CVE-2013-5906

MEDIUM

Description

Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Install, a different vulnerability than CVE-2013-5905.

References

http://marc.info/?l=bugtraq&m=139402697611681&w=2

http://marc.info/?l=bugtraq&m=139402749111889&w=2

http://osvdb.org/102010

http://rhn.redhat.com/errata/RHSA-2014-0030.html

http://secunia.com/advisories/56485

http://secunia.com/advisories/56535

http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html

http://www.securityfocus.com/bid/64758

http://www.securityfocus.com/bid/64903

http://www.securitytracker.com/id/1029608

https://access.redhat.com/errata/RHSA-2014:0414

https://exchange.xforce.ibmcloud.com/vulnerabilities/90342

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04166777

Details

Source: MITRE

Published: 2014-01-15

Updated: 2018-01-05

Type: NVD-CWE-noinfo

Risk Information

CVSS v2.0

Base Score: 5.1

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 4.9

Severity: MEDIUM

Vulnerable Software

Configuration 4

AND

cpe:2.3:a:hp:jdk:*:*:*:*:*:*:*:*

cpe:2.3:a:hp:jre:*:*:*:*:*:*:*:*

cpe:2.3:o:hp:hp-ux:b.11.23:*:*:*:*:*:*:*

cpe:2.3:o:hp:hp-ux:b.11.31:*:*:*:*:*:*:*

Configuration 5

cpe:2.3:a:oracle:jdk:1.5.0:update_55:*:*:*:*:*:*

cpe:2.3:a:oracle:jre:1.5.0:update_55:*:*:*:*:*:*

Tenable Plugins

View all (5 total)

ID	Name	Product	Family	Severity
79011	RHEL 5 / 6 : java-1.6.0-sun (RHSA-2014:0414)	Nessus	Red Hat Local Security Checks	critical
72139	GLSA-201401-30 : Oracle JRE/JDK: Multiple vulnerabilities (ROBOT)	Nessus	Gentoo Local Security Checks	critical
71987	RHEL 5 / 6 : java-1.7.0-oracle (RHSA-2014:0030)	Nessus	Red Hat Local Security Checks	critical
71967	Oracle Java SE Multiple Vulnerabilities (January 2014 CPU) (Unix)	Nessus	Misc.	critical
71966	Oracle Java SE Multiple Vulnerabilities (January 2014 CPU)	Nessus	Windows	critical