Published: 18/06/2013 Updated: 13/05/2022

CVSS v2 Base Score: 3.7 | Impact Score: 6.4 | Exploitability Score: 1.9

VMScore: 329

Vector: AV:L/AC:H/Au:N/C:P/I:P/A:P

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and previous versions and 6 Update 45 and previous versions, and OpenJDK 7, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Networking. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to improper enforcement of exclusive port binds when running on Windows, which allows malicious users to bind to ports that are already in use.

Vulnerable Product	Search on Vulmon	Subscribe to Product
oracle jre 1.7.0
oracle jre
oracle jdk 1.7.0
oracle jdk
sun jre 1.6.0
oracle jre 1.6.0
sun jdk 1.6.0
oracle jdk 1.6.0

Synopsis Low: Red Hat Network Satellite server IBM Java Runtime security update Type/Severity Security Advisory: Low Topic Updated java-160-ibm packages that fix several security issues are nowavailable for Red Hat Network Satellite Server 55The Red Hat Security Response Team has rated this update as ha ...

Synopsis Low: Red Hat Network Satellite server IBM Java Runtime security update Type/Severity Security Advisory: Low Topic Updated java-160-ibm packages that fix several security issues are nowavailable for Red Hat Network Satellite Server 54The Red Hat Security Response Team has rated this update as ha ...

Several security issues were fixed in OpenJDK 6 ...

IcedTea Web updated to work with new OpenJDK 7 ...

Several security issues were fixed in OpenJDK 7 ...

Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in the execution of arbitrary code, breakouts of the Java sandbox, information disclosure or denial of service For the oldstable distribution (squeeze), these problems have been fixed in version 6b27-1126-1~deb6u1 For the stable dis ...

Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in the execution of arbitrary code, breakouts of the Java sandbox, information disclosure or denial of service For the stable distribution (wheezy), these problems have been fixed in version 7u25-2310-1~deb7u1 In addition icedtea-we ...

NVD-CWE-noinfo http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=975146 http://rhn.redhat.com/errata/RHSA-2013-0963.html http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/8dd8266a2f4b http://secunia.com/advisories/54154 http://www-01.ibm.com/support/docview.wss?uid=swg21642336 http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00003.html http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00026.html http://rhn.redhat.com/errata/RHSA-2013-1060.html http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00028.html http://rhn.redhat.com/errata/RHSA-2013-1455.html http://rhn.redhat.com/errata/RHSA-2013-1456.html http://www.us-cert.gov/ncas/alerts/TA13-169A http://marc.info/?l=bugtraq&m=137545592101387&w=2 http://rhn.redhat.com/errata/RHSA-2013-1059.html http://security.gentoo.org/glsa/glsa-201406-32.xml http://www.securityfocus.com/bid/60625 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19535 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17265 https://access.redhat.com/errata/RHSA-2014:0414 https://access.redhat.com/errata/RHSA-2013:1456 https://nvd.nist.gov https://usn.ubuntu.com/1908-1/

CVE-2013-2451

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect