CVE-2013-2471
MITRE CVE Reference: CVE-2013-2471
Description: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to "Incorrect IntegerComponentRaster size checks."
Usage
Targetted asset: Java
Exploit kits using this vulnerability/ Exploit kits utilisant cette vulnérabilité:
- Exploit kits: Cool Exploit Kit, Flimkit, Glazunov, Magnitude, Nuclear Pack, RedKit, Sakura, Sibhost, Sweet Orange
Botnets using this vulnerability to function/propagate:
- Botnets:
Campaigns using this vulnerability:
- Campaigns:
Packages includingthis vulnerability:
- Packages:
Publications
MITRE CVE LICENSE: The MITRE Corporation (MITRE) hereby grants you a non-exclusive, royalty-free license to use Common Vulnerabilities and Exposures (CVE®) for research, development, and commercial purposes. Any copy you make for such purposes is authorized provided that you reproduce MITRE’s copyright designation and this license in any such copy. MITRE CVE®, TERMS OF USE: [1]