CVE-2013-0409 | Vulnerability Database | Aqua Security

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38 allows remote attackers to affect confidentiality via vectors related to JMX.

Affected Software

Name	Vendor	Start Version	End Version
Jre	Oracle	1.7.0 (including)	1.7.0 (including)
Jre	Oracle	1.7.0-update1 (including)	1.7.0-update1 (including)
Jre	Oracle	1.7.0-update10 (including)	1.7.0-update10 (including)
Jre	Oracle	1.7.0-update11 (including)	1.7.0-update11 (including)
Jre	Oracle	1.7.0-update2 (including)	1.7.0-update2 (including)
Jre	Oracle	1.7.0-update3 (including)	1.7.0-update3 (including)
Jre	Oracle	1.7.0-update4 (including)	1.7.0-update4 (including)
Jre	Oracle	1.7.0-update5 (including)	1.7.0-update5 (including)
Jre	Oracle	1.7.0-update6 (including)	1.7.0-update6 (including)
Jre	Oracle	1.7.0-update7 (including)	1.7.0-update7 (including)
Jre	Oracle	1.7.0-update9 (including)	1.7.0-update9 (including)
Openjdk-6	Ubuntu	devel	*
Openjdk-6	Ubuntu	hardy	*
Openjdk-6	Ubuntu	lucid	*
Openjdk-6	Ubuntu	oneiric	*
Openjdk-6	Ubuntu	precise	*
Openjdk-6	Ubuntu	quantal	*
Openjdk-6	Ubuntu	upstream	*
Openjdk-7	Ubuntu	devel	*
Openjdk-7	Ubuntu	oneiric	*
Openjdk-7	Ubuntu	precise	*
Openjdk-7	Ubuntu	quantal	*
Openjdk-7	Ubuntu	upstream	*
Red Hat Network Satellite Server v 5.4	RedHat	java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9	*
Red Hat Network Satellite Server v 5.5	RedHat	java-1.6.0-ibm-1:1.6.0.14.0-1jpp.1.el5_9	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.6.0-sun-1:1.6.0.39-1jpp.4.el5_9	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.7.0-oracle-1:1.7.0.13-1jpp.1.el5_9	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.5.0-ibm-1:1.5.0.16.0-1jpp.1.el5_9	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.6.0-ibm-1:1.6.0.13.0-1jpp.2.el5_9	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.7.0-ibm-1:1.7.0.4.0-1jpp.2.el5_9	*
Supplementary for Red Hat Enterprise Linux 6	RedHat	java-1.6.0-sun-1:1.6.0.39-1jpp.1.el6_3	*
Supplementary for Red Hat Enterprise Linux 6	RedHat	java-1.7.0-oracle-1:1.7.0.13-1jpp.3.el6_3	*
Supplementary for Red Hat Enterprise Linux 6	RedHat	java-1.5.0-ibm-1:1.5.0.16.0-1jpp.1.el6_4	*
Supplementary for Red Hat Enterprise Linux 6	RedHat	java-1.6.0-ibm-1:1.6.0.13.0-1jpp.3.el6_4	*
Supplementary for Red Hat Enterprise Linux 6	RedHat	java-1.7.0-ibm-1:1.7.0.4.0-1jpp.2.el6_4	*

References

http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2
http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2
http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2
http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2
http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2
http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2
http://rhn.redhat.com/errata/RHSA-2013-0236.html
http://rhn.redhat.com/errata/RHSA-2013-0237.html
http://rhn.redhat.com/errata/RHSA-2013-1455.html
http://rhn.redhat.com/errata/RHSA-2013-1456.html
http://www.kb.cert.org/vuls/id/858729
http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html
http://www.securityfocus.com/bid/57728
http://www.us-cert.gov/cas/techalerts/TA13-032A.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16530
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19114
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19240
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19383
http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2
http://marc.info/?l=bugtraq\u0026m=136439120408139\u0026w=2
http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2
http://marc.info/?l=bugtraq\u0026m=136570436423916\u0026w=2
http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2
http://marc.info/?l=bugtraq\u0026m=136733161405818\u0026w=2
http://rhn.redhat.com/errata/RHSA-2013-0236.html
http://rhn.redhat.com/errata/RHSA-2013-0237.html
http://rhn.redhat.com/errata/RHSA-2013-1455.html
http://rhn.redhat.com/errata/RHSA-2013-1456.html
http://www.kb.cert.org/vuls/id/858729
http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html
http://www.securityfocus.com/bid/57728
http://www.us-cert.gov/cas/techalerts/TA13-032A.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16530
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19114
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19240
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19383

NVD	https://nvd.nist.gov/vuln/detail/CVE-2013-0409
CWE	https://cwe.mitre.org/data/definitions/.html