CVE-2013-1491 in Oracle Javainfo

Summary

The Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via vectors related to 2D, as demonstrated by Joshua Drake during a Pwn2Own competition at CanSecWest 2013.

Reservation

01/30/2013

Disclosure

03/08/2013

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
8257	Oracle Java 2D code injection	94	Proof-of-Concept	Official fix	CVE-2013-1491
7986	Oracle Java Java Runtime Environment code injection	94	Proof-of-Concept	Official fix	CVE-2013-1491

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Interested in the pricing of exploits?

See the underground prices here!