CVE-2013-4041

medium

Description

Unspecified vulnerability in IBM Java SDK 5.0.0 before SR16 FP4, 7.0.0 before SR6, 6.0.1 before SR7, and 6.0.0 before SR15 allows remote attackers to access restricted classes via unspecified vectors.

References

http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00013.html

http://rhn.redhat.com/errata/RHSA-2013-1507.html

http://rhn.redhat.com/errata/RHSA-2013-1508.html

http://rhn.redhat.com/errata/RHSA-2013-1509.html

http://rhn.redhat.com/errata/RHSA-2013-1793.html

http://secunia.com/advisories/56338

https://exchange.xforce.ibmcloud.com/vulnerabilities/86416

https://www.ibm.com/developerworks/java/jdk/alerts/#IBM_Security_Update_November_2013

http://www-01.ibm.com/support/docview.wss?uid=swg1IV51087

http://www-01.ibm.com/support/docview.wss?uid=swg1IV51088

http://www-01.ibm.com/support/docview.wss?uid=swg21655201

http://www-01.ibm.com/support/docview.wss?uid=swg21655202

Details

Source: Mitre, NVD

Published: 2013-11-24

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

Detections

Analytics