| Revision Date: | 2015-03-23 | Version: | 7 |
| Title: | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE (subcomponent: RMI) 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number. |
| Description: | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, 5.0 through Update 38, and 1.4.2_40 and earlier, and OpenJDK 7, allows remote attackers to affect integrity via vectors related to RMI. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to cross-site scripting (XSS) in the sun.rmi.transport.proxy CGIHandler class that does not properly handle error messages in a (1) command or (2) port number. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2013-0424
|
| Platform(s): | Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Vista
Microsoft Windows XP
| Product(s): | Java Runtime Environment
|
| Definition Synopsis |
| Determine if the version of Java Runtime Environment is less than 1.4.2:update_41 and is greater than or equal to 1.4.0 Determine if the version of Java Runtime Environment is less than 1.4.2:update_41
AND Java SE Runtime Environment 4 is installed
OR Determine if the version of Java Runtime Environment is less than 1.5.0:update_39 and is greater than or equal to 1.5.0
Determine if the version of Java Runtime Environment is less than 1.5.0:update_39
AND Java SE Runtime Environment 5 is installed
OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_39 and is greater than or equal to 1.6.0
Determine if the version of Java Runtime Environment is less than 1.6.0:update_39
AND Java SE Runtime Environment 6 is installed
OR Determine if the version of Java Runtime Environment is less than 1.7.0:update_12 and is greater than or equal to 1.7.0
Determine if the version of Java Runtime Environment is less than 1.7.0:update_12
AND Java SE Runtime Environment 7 is installed
|