CVE Reference: CVE-2013-5884

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2013-5884

Description:
Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote attackers to affect confidentiality via vectors related to CORBA. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-party claims that the issue is related to an incorrect check for code permissions by CORBA stub factories.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/90348

UBUNTU
  http://www.ubuntu.com/usn/USN-2124-1
  http://www.ubuntu.com/usn/USN-2089-1

SUSE
  http://lists.opensuse.org/opensuse-security-announce/2014-03/msg00024.html
  http://lists.opensuse.org/opensuse-updates/2014-02/msg00000.html
  http://lists.opensuse.org/opensuse-updates/2014-01/msg00107.html
  http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00012.html
  http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00009.html
  http://lists.opensuse.org/opensuse-updates/2014-01/msg00105.html

ST
  1029608

SAID
  Secunia Advisory: SA56432
  Secunia Advisory: SA56485
  Secunia Advisory: SA56486
  Secunia Advisory: SA56535

REDHAT
  http://rhn.redhat.com/errata/RHSA-2014-0135.html
  http://rhn.redhat.com/errata/RHSA-2014-0134.html
  http://rhn.redhat.com/errata/RHSA-2014-0030.html
  http://rhn.redhat.com/errata/RHSA-2014-0027.html
  http://rhn.redhat.com/errata/RHSA-2014-0097.html
  http://rhn.redhat.com/errata/RHSA-2014-0026.html

OSVDB
  102016

MISC
  http://hg.openjdk.java.net/jdk7u/jdk7u/corba/rev/b1548473f261

HP
  http://marc.info/?l=bugtraq&m=139402749111889&w=2
  http://marc.info/?l=bugtraq&m=139402697611681&w=2

CONFIRM
  http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

BID
  64758
  64924


Return to the previous page.