Vulnerability CVE-2013-0402

Vulnerability Name:

CVE-2013-0402 (CCN-82822)

Assigned:

2012-12-07

Published:

2013-03-06

Updated:

2017-09-19

Summary:

Heap-based buffer overflow in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via unspecified vectors related to JavaFX, as demonstrated by VUPEN during a Pwn2Own competition at CanSecWest 2013.

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

9.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
6.9 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

6.8 Medium (REDHAT CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
5.0 Medium (REDHAT Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-119

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2013-0402

Source: CCN
Type: HP Communities Web site
Pwn2Own 2013

Source: MISC
Type: UNKNOWN
http://h30499.www3.hp.com/t5/HP-Security-Research-Blog/Pwn2Own-2013/ba-p/5981157

Source: CCN
Type: RHSA-2013-0757
Critical: java-1.7.0-oracle security update

Source: REDHAT
Type: Vendor Advisory
RHSA-2013:0757

Source: CCN
Type: SA53451
IBM Maximo Asset Management Products Java Multiple Vulnerabilities

Source: CCN
Type: IBM Security Bulletin 1638135
Potential security vulnerabilities with JavaTM SDKs

Source: CCN
Type: IBM Security Bulletin 1640763
Rational Host On-Demand clients affected by vulnerabilities in IBM JRE

Source: CCN
Type: IBM Security Bulletin 1647384
IBM Operational Decision Manager and WebSphere ILOG JRules: Multiple security vulnerabilities in IBM JRE

Source: CCN
Type: Oracle Web site
Oracle Java SE Critical Patch Update Advisory - April 2013

Source: CONFIRM
Type: Vendor Advisory
http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html

Source: CCN
Type: BID-58397
Oracle Java SE Remote Heap Buffer Overflow Vulnerability

Source: CERT
Type: US Government Resource
TA13-107A

Source: MISC
Type: UNKNOWN
http://www.zdnet.com/pwn2own-down-go-all-the-browsers-7000012283/

Source: XF
Type: UNKNOWN
oracle-java-cve20130402-bo(82822)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:15728

Source: MISC
Type: UNKNOWN
https://twitter.com/thezdi/status/309484730506698752

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2013-0402

Source: CCN
Type: ZDI-13-077
(Pwn2Own) Oracle Java FLV Parsing Remote Code Execution Vulnerability

Vulnerable Configuration:

Configuration 1:

cpe:/a:oracle:javafx:*:*:*:*:*:*:*:* (Version <= 2.2.7)

Configuration 2:

cpe:/a:oracle:jdk:1.7.0:update17:*:*:*:*:*:*

OR cpe:/a:oracle:jre:1.7.0:update17:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/a:redhat:rhel_extras:6:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:rhel_extras:5:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/o:redhat:enterprise_linux_server_supplementary:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation_supplementary:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop_supplementary:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_hpc_node_supplementary:6:*:*:*:*:*:*:*

OR cpe:/a:ibm:maximo_asset_management:6.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:maximo_asset_management:7.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:maximo_asset_management:7.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_host_on-demand:11.0.8:*:*:*:*:*:*:*

OR cpe:/a:ibm:operational_decision_manager:8.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:operational_decision_manager:7.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:operational_decision_manager:8.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_composite_application_manager:7.3:*:*:*:transactions:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:23807	P	ELSA-2013:0757: java-1.7.0-oracle security update (Critical)	2014-05-26
oval:org.mitre.oval:def:20955	P	RHSA-2013:0757: java-1.7.0-oracle security update (Critical)	2014-02-17
oval:org.mitre.oval:def:15728	V	Vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and before and JavaFX 2.2.7 and before. Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.	2013-06-03
oval:com.redhat.rhsa:def:20130757	P	RHSA-2013:0757: java-1.7.0-oracle security update (Critical)	2013-04-18
oval:com.ubuntu.precise:def:20130402000	V	CVE-2013-0402 on Ubuntu 12.04 LTS (precise) - medium.	2013-03-08

BACK