Oracle Java SE CVE-2013-1491 Remote Code Execution Vulnerability

BID:58493

Info

Oracle Java SE CVE-2013-1491 Remote Code Execution Vulnerability

Bugtraq ID: 58493
Class: Unknown
CVE: CVE-2013-1491
Remote: Yes
Local: No
Published: Mar 08 2013 12:00AM
Updated: Jan 28 2014 09:24PM
Credit: Joshua Drake
Vulnerable: WordPress Uploader 1.0
SuSE SUSE Linux Enterprise Software Development Kit 11 SP3
SuSE SUSE Linux Enterprise Server for VMware 11 SP3
SuSE SUSE Linux Enterprise Server for VMware 11 SP2
SuSE SUSE Linux Enterprise Server 11 SP3
SuSE SUSE Linux Enterprise Server 11 SP2
+ Linux kernel 2.6.5
SuSE SUSE Linux Enterprise Server 10 SP4
SuSE SUSE Linux Enterprise Java 11 SP2
SuSE SUSE Linux Enterprise Java 10 SP4
SuSE Suse Linux Enterprise Desktop 10 SP4
SuSE Linux Enterprise Software Development Kit 11 SP2
Redhat Network Satellite (for RHEL 6) 5.5
Redhat Network Satellite (for RHEL 5) 5.5
Redhat Enterprise Linux Workstation Supplementary 6
Redhat Enterprise Linux Supplementary 5 server
Redhat Enterprise Linux Server Supplementary 6
Redhat Enterprise Linux HPC Node Supplementary 6
Redhat Enterprise Linux Desktop Supplementary 6
Redhat Enterprise Linux Desktop Supplementary 5 client
Oracle JRE(Windows Production Release) 1.7.0_17
Oracle JRE(Windows Production Release) 1.7.0_15
Oracle JRE(Windows Production Release) 1.7.0_14
Oracle JRE(Windows Production Release) 1.7.0_13
Oracle JRE(Windows Production Release) 1.7.0_12
Oracle JRE(Windows Production Release) 1.7.0_11
Oracle JRE(Windows Production Release) 1.6.0_43
Oracle JRE(Windows Production Release) 1.6.0_41
Oracle JRE(Windows Production Release) 1.6.0_40
Oracle JRE(Windows Production Release) 1.6.0_39
Oracle JRE(Windows Production Release) 1.6.0_38
Oracle JRE(Windows Production Release) 1.5.0_41
Oracle JRE(Windows Production Release) 1.5.0_40
Oracle JRE(Windows Production Release) 1.5.0_39
Oracle JRE(Solaris Production Release) 1.7.0_17
Oracle JRE(Solaris Production Release) 1.7.0_15
Oracle JRE(Solaris Production Release) 1.7.0_14
Oracle JRE(Solaris Production Release) 1.7.0_13
Oracle JRE(Solaris Production Release) 1.7.0_12
Oracle JRE(Solaris Production Release) 1.7.0_11
Oracle JRE(Solaris Production Release) 1.7.0_10
Oracle JRE(Solaris Production Release) 1.6.0_43
Oracle JRE(Solaris Production Release) 1.6.0_41
Oracle JRE(Solaris Production Release) 1.6.0_40
Oracle JRE(Solaris Production Release) 1.6.0_39
Oracle JRE(Solaris Production Release) 1.6.0_38
Oracle JRE(Solaris Production Release) 1.5.0_41
Oracle JRE(Solaris Production Release) 1.5.0_40
Oracle JRE(Solaris Production Release) 1.5.0_39
Oracle JRE(Linux Production Release) 1.7.0_17
Oracle JRE(Linux Production Release) 1.7.0_15
Oracle JRE(Linux Production Release) 1.7.0_14
Oracle JRE(Linux Production Release) 1.7.0_13
Oracle JRE(Linux Production Release) 1.7.0_11
Oracle JRE(Linux Production Release) 1.6.0_43
Oracle JRE(Linux Production Release) 1.6.0_41
Oracle JRE(Linux Production Release) 1.6.0_40
Oracle JRE(Linux Production Release) 1.6.0_38
Oracle JRE(Linux Production Release) 1.5.0_41
Oracle JRE(Linux Production Release) 1.5.0_40
Oracle JRE (Windows Production Release) 1.7.0_17
Oracle JRE (Windows Production Release) 1.6.0_43
Oracle JRE (Windows Production Release) 1.6.0_38
Oracle JRE (Windows Production Release) 1.6.0_37
Oracle JRE (Windows Production Release) 1.6.0_35
Oracle JRE (Windows Production Release) 1.6.0_33
Oracle JRE (Windows Production Release) 1.6.0_32
Oracle JRE (Windows Production Release) 1.6.0_31
Oracle JRE (Solaris Production Release) 1.7.0_17
Oracle JRE (Solaris Production Release) 1.6.0_43
Oracle JRE (Solaris Production Release) 1.6.0_35
Oracle JRE (Solaris Production Release) 1.6.0_32
Oracle JRE (Solaris Production Release) 1.6.0_30
Oracle JRE (Solaris Production Release) 1.6.0_28
Oracle JRE (Solaris Production Release) 1.6.0_27
Oracle JRE (Solaris Production Release) 1.6.0_26
Oracle JRE (Solaris Production Release) 1.6.0_25
Oracle JRE (Solaris Production Release) 1.6.0_24
Oracle JRE (Solaris Production Release) 1.6.0_23
Oracle JRE (Solaris Production Release) 1.6.0_22
Oracle JRE (Linux Production Release) 1.7.0_17
Oracle JRE (Linux Production Release) 1.7.0_13
Oracle JRE (Linux Production Release) 1.7.0_12
Oracle JDK(Windows Production Release) 1.7.0_17
Oracle JDK(Windows Production Release) 1.7.0_15
Oracle JDK(Windows Production Release) 1.7.0_14
Oracle JDK(Windows Production Release) 1.7.0_13
Oracle JDK(Windows Production Release) 1.7.0_12
Oracle JDK(Windows Production Release) 1.7.0_11
Oracle JDK(Windows Production Release) 1.7.0_10
Oracle JDK(Windows Production Release) 1.6.0_43
Oracle JDK(Windows Production Release) 1.6.0_41
Oracle JDK(Windows Production Release) 1.6.0_40
Oracle JDK(Windows Production Release) 1.6.0_39
Oracle JDK(Windows Production Release) 1.5.0_40
Oracle JDK(Windows Production Release) 1.5.0_39
Oracle JDK(Solaris Production Release) 1.7.0_17
Oracle JDK(Solaris Production Release) 1.7.0_15
Oracle JDK(Solaris Production Release) 1.7.0_14
Oracle JDK(Solaris Production Release) 1.7.0_13
Oracle JDK(Solaris Production Release) 1.7.0_12
Oracle JDK(Solaris Production Release) 1.6.0_43
Oracle JDK(Solaris Production Release) 1.6.0_41
Oracle JDK(Solaris Production Release) 1.6.0_40
Oracle JDK(Solaris Production Release) 1.6.0_39
Oracle JDK(Solaris Production Release) 1.5.0_41
Oracle JDK(Solaris Production Release) 1.5.0_40
Oracle JDK(Solaris Production Release) 1.5.0_39
Oracle JDK(Linux Production Release) 1.7.0_17
Oracle JDK(Linux Production Release) 1.7.0_15
Oracle JDK(Linux Production Release) 1.7.0_14
Oracle JDK(Linux Production Release) 1.7.0_13
Oracle JDK(Linux Production Release) 1.7.0_11
Oracle JDK(Linux Production Release) 1.6.0_43
Oracle JDK(Linux Production Release) 1.6.0_41
Oracle JDK(Linux Production Release) 1.6.0_40
Oracle JDK(Linux Production Release) 1.6.0_37
Oracle JDK(Linux Production Release) 1.5.0_41
Oracle JDK(Linux Production Release) 1.5.0_40
Oracle JDK (Windows Production Release) 1.7.0_17
Oracle JDK (Windows Production Release) 1.5.0_38
Oracle JDK (Windows Production Release) 1.5.0_36
Oracle JDK (Solaris Production Release) 1.5.0_38
Oracle JDK (Solaris Production Release) 1.5.0_36
Oracle JDK (Linux Production Release) 1.7.0_17
Oracle JDK (Linux Production Release) 1.7.0_13
Oracle JDK (Linux Production Release) 1.7.0_12
Oracle JDK (Linux Production Release) 1.6.0_43
Oracle JDK (Linux Production Release) 1.6.0_39
Oracle JDK (Linux Production Release) 1.6.0_38
Oracle JDK (Linux Production Release) 1.6.0_35
Oracle JDK (Linux Production Release) 1.6.0_34
Oracle JDK (Linux Production Release) 1.6.0_32
Oracle JDK (Linux Production Release) 1.6.0_30
Oracle JDK (Linux Production Release) 1.6.0_28
Oracle JDK (Linux Production Release) 1.6.0_27
Oracle JDK (Linux Production Release) 1.6.0_26
Oracle JDK (Linux Production Release) 1.6.0_25
Oracle JDK (Linux Production Release) 1.6.0_24
Oracle JDK (Linux Production Release) 1.6.0_23
Oracle JDK (Linux Production Release) 1.5.0_39
Oracle JDK (Linux Production Release) 1.5.0_38
Oracle JDK (Linux Production Release) 1.5.0_36
Oracle Java 7 Update 17 0
IBM WebSphere Operational Decision Management 7.5.0.0
IBM WebSphere Message Broker 8.0
IBM WebSphere Message Broker 7.0.0
IBM WebSphere Message Broker 6.1
IBM WebSphere ILOG JRules 7.1
IBM WebSphere Cast Iron Cloud Integration 6.3 Virtual Applianc
IBM WebSphere Cast Iron Cloud Integration 6.3 Studio
IBM WebSphere Cast Iron Cloud Integration 6.3 Physical Applian
IBM WebSphere Cast Iron Cloud Integration 6.3 Live SaaS offeri
IBM WebSphere Cast Iron Cloud Integration 6.1 Virtual Applianc
IBM WebSphere Cast Iron Cloud Integration 6.1 Studio
IBM WebSphere Cast Iron Cloud Integration 6.1 Physical Applian
IBM WebSphere Cast Iron Cloud Integration 6.1 Live SaaS offeri
IBM WebSphere Cast Iron Cloud Integration 6.0 Virtual Applianc
IBM WebSphere Cast Iron Cloud Integration 6.0 Studio
IBM WebSphere Cast Iron Cloud Integration 6.0 Physical Applian
IBM Virtualization Engine TS7700 0
IBM Tivoli System Automation for Integrated Operations Management 2.1
IBM Tivoli System Automation Application Manager 3.2.2
IBM Tivoli System Automation Application Manager 3.2.1
IBM Tivoli System Automation Application Manager 3.2
IBM Tivoli System Automation Application Manager 3.1
IBM Tivoli System Automation (TSA) for Multiplatforms 3.2.2
IBM Tivoli System Automation (TSA) for Multiplatforms 3.2.1
IBM Tivoli System Automation (TSA) for Multiplatforms 3.2
IBM Tivoli System Automation (TSA) for Multiplatforms 3.1
IBM Tivoli Remote Control 5.1.2
IBM Tivoli Provisioning Manager for Software 5.1.1.3
IBM Tivoli Provisioning Manager for Software 5.1
IBM Tivoli Provisioning Manager 7.2.1
IBM Tivoli Provisioning Manager 7.1.1
IBM Tivoli Provisioning Manager 5.1.1
IBM Tivoli Provisioning Manager 7.2
IBM Tivoli Provisioning Manager 7.1
IBM Tivoli Provisioning Manager 5.1.1.1
IBM Tivoli Monitoring 6.3
IBM Tivoli Monitoring 6.2.3
IBM Tivoli Monitoring 6.2.2
IBM Tivoli Monitoring 6.2.1
IBM Tivoli Monitoring 6.2
IBM Tivoli Endpoint Manager for Remote Control 9.0
IBM Tivoli Endpoint Manager for Remote Control 8.2.1
IBM Tivoli Composite Application Manager for Transactions 7.3.0
IBM Tivoli Composite Application Manager for Transactions 7.2.0.2
IBM Tivoli Composite Application Manager for Transactions 7.2.0.1
IBM Tivoli Composite Application Manager for Transactions 7.2.0
IBM Tivoli Composite Application Manager for Transactions 7.1.0.2
IBM Tivoli Composite Application Manager for Transactions 7.1.0.1
IBM Tivoli Composite Application Manager for Transactions 7.1.0
IBM Tivoli Application Dependency Discovery Manager 7.2.1 3
IBM Tivoli Application Dependency Discovery Manager 7.2.1 2
IBM Tivoli Application Dependency Discovery Manager 7.2.1 1
IBM Tivoli Application Dependency Discovery Manager 7.2.1
IBM Tivoli Application Dependency Discovery Manager 7.2
IBM Tivoli Application Dependency Discovery Manager 7.2.1.4
IBM Smart Analytics System 5600 9.7
IBM Rational Host On-Demand 11.0
IBM Rational Host On-Demand 11.0.7
IBM Operational Decision Manager 8.5
IBM Operational Decision Manager 8.0
IBM Maximo Asset Management Essentials 7.5
IBM Maximo Asset Management Essentials 7.1
IBM Maximo Asset Management Essentials 6.2
IBM Maximo Asset Management 7.2.1
IBM Maximo Asset Management 7.1.2
IBM Maximo Asset Management 7.1.1
IBM Maximo Asset Management 6.2.8
IBM Maximo Asset Management 6.2.7
IBM Maximo Asset Management 6.2.6
IBM Maximo Asset Management 6.2.5
IBM Maximo Asset Management 6.2.4
IBM Maximo Asset Management 6.2.3
IBM Maximo Asset Management 6.2.2
IBM Maximo Asset Management 6.2.1
IBM Maximo Asset Management 7.5
IBM Maximo Asset Management 7.2
IBM Maximo Asset Management 7.1
IBM Maximo Asset Management 6.2
IBM Lotus Notes 8.5.3
IBM Lotus Notes 8.5.2
IBM Lotus Notes 8.5.1
IBM Lotus Notes 8.0.2
IBM Lotus Notes 9.0
IBM Lotus Notes 8.5.2.3
IBM Lotus Notes 8.5.2.2
IBM Lotus Notes 8.5.2.1
IBM Lotus Notes 8.5.1.5
IBM Lotus Notes 8.5.1.4
IBM Lotus Notes 8.5.1.3
IBM Lotus Notes 8.5.1.2
IBM Lotus Notes 8.5.0.1
IBM Lotus Notes 8.5
IBM Lotus Notes 8.0.2.6
IBM Lotus Notes 8.0.2.5
IBM Lotus Notes 8.0.2.4
IBM Lotus Notes 8.0.2.3
IBM Lotus Notes 8.0.2.2
IBM Lotus Notes 8.0.2.1
IBM Lotus Notes 8.0
IBM Lotus Domino 8.5.4
IBM Lotus Domino 8.5.3
IBM Lotus Domino 8.5.2
IBM Lotus Domino 8.5.1
IBM Lotus Domino 8.5
IBM Lotus Domino 8.0.2
IBM Lotus Domino 8.0.1
IBM Lotus Domino 9.0
IBM Lotus Domino 8.5.1.1
IBM Lotus Domino 8.5.0.1
IBM Lotus Domino 8.0.2.4
IBM Lotus Domino 8.0.2.3
IBM Lotus Domino 8.0.2.2
IBM Lotus Domino 8.0.2.1
IBM Lotus Domino 8.0
IBM Java SE 7
IBM Java SE 6
IBM Java SDK 7
IBM Java SDK 6
IBM Intelligent Operations Center 1.5.0.2
IBM Intelligent Operations Center 1.5.0.1
IBM Intelligent Operations Center 1.5
IBM IMS Enterprise Suite 2.2.0.1
IBM IMS Enterprise Suite 2.2
IBM IMS Enterprise Suite 2.1.0.5
IBM IMS Enterprise Suite 1.1.0.6
IBM IMS Enterprise Suite 1.1
HP Java JRE/JDK for HP-UX 1.6.0.18
HP HP-UX B.11.31
HP HP-UX B.11.11
Hitachi uCosminexus Service Platform 0
Hitachi uCosminexus Service Architect 0
Hitachi uCosminexus Operator 0
Hitachi uCosminexus Developer Standard 0
Hitachi uCosminexus Developer Professional for Plug-in 0
Hitachi uCosminexus Developer Professional 0
Hitachi uCosminexus Developer Light 0
Hitachi uCosminexus Developer 01 0
Hitachi uCosminexus Client 0
Hitachi uCosminexus Application Server Standard-R 0
Hitachi uCosminexus Application Server Standard 0
Hitachi uCosminexus Application Server Smart Edition 0
Hitachi uCosminexus Application Server Light 0
Hitachi uCosminexus Application Server Express 09-70 (AIX)
Hitachi uCosminexus Application Server Enterprise 02-00
Hitachi Cosminexus Studio 5
Hitachi Cosminexus Studio 4.0
Hitachi Cosminexus Server Web Edition 4
Hitachi Cosminexus Server Standard Edition 4
Hitachi Cosminexus Developer Standard 6
Hitachi Cosminexus Developer Professional 6
Hitachi Cosminexus Developer Light 6
Hitachi Cosminexus Developer 5.0
Hitachi Cosminexus Client 0
Hitachi Cosminexus Application Server Standard 6
Hitachi Cosminexus Application Server Enterprise 6
Hitachi Cosminexus Application Server 5.0
Hitachi Cosminexus 9.0
Hitachi Cosminexus 8.0
Hitachi Cosminexus 7.0
Gentoo Linux
Avaya Voice Portal 5.1.3
Avaya Voice Portal 5.1.2
Avaya Voice Portal 5.1.1
Avaya Voice Portal 5.1
Avaya Voice Portal 5.0 SP1
Avaya Voice Portal 5.0
Avaya Proactive Contact 5.1
Avaya Proactive Contact 5.0
Avaya Messaging Application Server 5.2.1
Avaya Message Networking 5.2.1
Avaya Message Networking 5.2.5
Avaya Message Networking 5.2.4
Avaya Message Networking 5.2.3
Avaya Message Networking 5.2.2
Avaya Meeting Exchange 6.2
Avaya Meeting Exchange 5.2
Avaya IP Office Server Edition 8.1
Avaya IP Office Application Server 8.1
Avaya IP Office Application Server 8.0
Avaya Communication Server 1000M Signaling Server 7.5
Avaya Communication Server 1000M Signaling Server 7.0
Avaya Communication Server 1000M Signaling Server 6.0
Avaya Communication Server 1000M 7.5
Avaya Communication Server 1000M 7.0
Avaya Communication Server 1000M 6.0
Avaya Communication Server 1000E Signaling Server 7.5
Avaya Communication Server 1000E Signaling Server 7.0
Avaya Communication Server 1000E Signaling Server 6.0
Avaya Communication Server 1000E 7.5
Avaya Communication Server 1000E 7.0
Avaya Communication Server 1000E 6.0
Avaya CMS r17
Avaya CMS R16.3
Avaya CMS R16
Avaya CMS r15
Avaya Aura System Manager 6.2 SP3
Avaya Aura System Manager 6.2
Avaya Aura System Manager 6.1.5
Avaya Aura System Manager 6.1.3
Avaya Aura System Manager 6.1.2
Avaya Aura System Manager 6.1.1
Avaya Aura System Manager 6.1 SP2
Avaya Aura System Manager 6.1 Sp1
Avaya Aura System Manager 6.1
Avaya Aura System Manager 6.0 SP1
Avaya Aura System Manager 6.0
Avaya Aura System Manager 5.2
Avaya Aura SIP Enablement Services 5.2.1
Avaya Aura SIP Enablement Services 5.2
Avaya Aura Session Manager 6.2.1
Avaya Aura Session Manager 6.1.5
Avaya Aura Session Manager 6.1.3
Avaya Aura Session Manager 6.1.2
Avaya Aura Session Manager 6.1.1
Avaya Aura Session Manager 6.0.1
Avaya Aura Session Manager 6.3
Avaya Aura Session Manager 6.2.2
Avaya Aura Session Manager 6.2 SP1
Avaya Aura Session Manager 6.2
Avaya Aura Session Manager 6.1 SP2
Avaya Aura Session Manager 6.1 Sp1
Avaya Aura Session Manager 6.1
Avaya Aura Session Manager 6.0 SP1
Avaya Aura Session Manager 6.0
Avaya Aura Session Manager 5.2.1
Avaya Aura Session Manager 5.2 SP2
Avaya Aura Session Manager 5.2 SP1
Avaya Aura Session Manager 5.2
Avaya Aura Presence Services 6.1.2
Avaya Aura Presence Services 6.1.1
Avaya Aura Presence Services 6.1 SP1
Avaya Aura Presence Services 6.1
Avaya Aura Presence Services 6.0
Avaya Aura Messaging 6.1.1
Avaya Aura Messaging 6.2
Avaya Aura Messaging 6.1
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Messaging 6.0.1
Avaya Aura Messaging 6.0
Avaya Aura Experience Portal 6.0.2
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Experience Portal 6.0.1
Avaya Aura Experience Portal 6.0 SP2
+ Avaya Communication Manager Server DEFINITY Server SI/CS
+ Avaya Communication Manager Server S8100
+ Avaya Communication Manager Server S8300
+ Avaya Communication Manager Server S8500
+ Avaya Communication Manager Server S8700
Avaya Aura Experience Portal 6.0 SP1
Avaya Aura Experience Portal 6.0
Avaya Aura Conferencing 6.0 Standard
Avaya Aura Conferencing 7.0
Avaya Aura Conferencing 6.0 Standard
Avaya Aura Conferencing 6.0
Avaya Aura Application Server 5300 SIP Core 3.0
Avaya Aura Application Server 5300 SIP Core 2.0
Avaya Aura Application Enablement Services 5.2.1
Avaya Aura Application Enablement Services 6.1.2
Avaya Aura Application Enablement Services 6.1.1
Avaya Aura Application Enablement Services 6.1
Avaya Aura Application Enablement Services 5.2.4
Avaya Aura Application Enablement Services 5.2.3
Avaya Aura Application Enablement Services 5.2.2
Avaya Aura Application Enablement Services 5.2
Apple Mac OS X Server 10.7.5
Apple Mac OS X Server 10.6.6
Apple Mac OS X Server 10.6.5
Apple Mac OS X Server 10.6.5
Apple Mac OS X Server 10.6.4
Apple Mac OS X Server 10.6.3
Apple Mac OS X Server 10.6.2
Apple Mac OS X Server 10.6.1
Apple Mac OS X Server 10.7.4
Apple Mac OS X Server 10.7.3
Apple Mac OS X Server 10.7.2
Apple Mac OS X Server 10.7.1
Apple Mac OS X Server 10.7
Apple Mac OS X Server 10.6.8
Apple Mac OS X Server 10.6.7
Apple Mac OS X Server 10.6
Apple Mac OS X 10.8.2
Apple Mac OS X 10.8.1
Apple Mac OS X 10.7.5
Apple Mac OS X 10.6.6
Apple Mac OS X 10.6.5
Apple Mac OS X 10.6.5
Apple Mac OS X 10.6.4
Apple Mac OS X 10.6.3
Apple Mac OS X 10.6.2
Apple Mac OS X 10.6.1
Apple Mac OS X 10.8.3
Apple Mac OS X 10.8
Apple Mac OS X 10.7.4
Apple Mac OS X 10.7.3
Apple Mac OS X 10.7.2
Apple Mac OS X 10.7.1
Apple Mac OS X 10.7
Apple Mac OS X 10.6.8
Apple Mac OS X 10.6.7
Apple Mac OS X 10.6
Not Vulnerable: IBM Virtualization Engine TS7700 8.31.0.89
IBM Tivoli System Automation for Integrated Operations Management 2.1.1.4
IBM Tivoli Application Dependency Discovery Manager 7.2.1.5
IBM Rational Host On-Demand 11.0.8
IBM Lotus Notes 8.5.3 Fix Pack 5
IBM Lotus Domino 8.5.3 Fix Pack 5
IBM IMS Enterprise Suite 2.2.0.2
HP Java JRE/JDK for HP-UX 1.6.0.19.00
+ HP HP-UX 10.20

Discussion

Oracle Java SE CVE-2013-1491 Remote Code Execution Vulnerability

Oracle Java SE is prone to a remote code execution vulnerability.



An attacker can exploit this issue to execute arbitrary code in the context of the application.



Oracle Java 7 Update 17 is vulnerable; other versions may also be affected.

Exploit / POC

Oracle Java SE CVE-2013-1491 Remote Code Execution Vulnerability

Core Security Technologies has developed a working commercial exploit for its CORE IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.

Exploitation of this issue was demonstrated at the Pwn2Own contest, but the exploit is not publicly available.

Solution / Fix

Oracle Java SE CVE-2013-1491 Remote Code Execution Vulnerability

Solution:
Updates are available. Please see the references for more information.


Apple Mac OS X 10.6.8

Apple Mac OS X 10.6.7

Apple Mac OS X Server 10.7.2

Apple Mac OS X Server 10.6.5

Apple Mac OS X 10.8.1
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report