BID:58504 - Oracle Java SE CVE-2013-1488 Remote Code Execution Vulnerability

Oracle Java SE CVE-2013-1488 Remote Code Execution Vulnerability

BID:58504

Info

Oracle Java SE CVE-2013-1488 Remote Code Execution Vulnerability

Bugtraq ID:	58504
Class:	Unknown
CVE:	CVE-2013-1488
Remote:	Yes
Local:	No
Published:	Mar 07 2013 12:00AM
Updated:	Apr 13 2015 10:23PM
Credit:	James Forshaw
Vulnerable:	Ubuntu Ubuntu Linux 12.10 i386 Ubuntu Ubuntu Linux 12.10 amd64 Ubuntu Ubuntu Linux 12.04 LTS Ubuntu Ubuntu Linux 11.10 Ubuntu Ubuntu Linux 10.04 LTS SuSE Suse Linux Enterprise Desktop 11 SP2 S.u.S.E. openSUSE 12.2 Redhat Enterprise Linux Workstation Supplementary 6 Redhat Enterprise Linux Workstation Optional 6 Redhat Enterprise Linux Workstation 6 Redhat Enterprise Linux Supplementary 5 server Redhat Enterprise Linux Server Supplementary 6 Redhat Enterprise Linux Server Optional 6 Redhat Enterprise Linux Server 6 Redhat Enterprise Linux HPC Node Supplementary 6 Redhat Enterprise Linux HPC Node Optional 6 Redhat Enterprise Linux HPC Node 6 Redhat Enterprise Linux Desktop Supplementary 6 Redhat Enterprise Linux Desktop Supplementary 5 client Redhat Enterprise Linux Desktop Optional 6 Redhat Enterprise Linux Desktop 6 Redhat Enterprise Linux Desktop 5 client Redhat Enterprise Linux 5 Server Oracle JRE(Windows Production Release) 1.7.0_9 Oracle JRE(Windows Production Release) 1.7.0_8 Oracle JRE(Windows Production Release) 1.7.0_17 Oracle JRE(Windows Production Release) 1.7.0_15 Oracle JRE(Windows Production Release) 1.7.0_14 Oracle JRE(Windows Production Release) 1.7.0_13 Oracle JRE(Windows Production Release) 1.7.0_12 Oracle JRE(Windows Production Release) 1.7.0_11 Oracle JRE(Windows Production Release) 1.7.0_10 Oracle JRE(Solaris Production Release) 1.7.0_9 Oracle JRE(Solaris Production Release) 1.7.0_8 Oracle JRE(Solaris Production Release) 1.7.0_17 Oracle JRE(Solaris Production Release) 1.7.0_15 Oracle JRE(Solaris Production Release) 1.7.0_14 Oracle JRE(Solaris Production Release) 1.7.0_13 Oracle JRE(Solaris Production Release) 1.7.0_12 Oracle JRE(Solaris Production Release) 1.7.0_11 Oracle JRE(Solaris Production Release) 1.7.0_10 Oracle JRE(Linux Production Release) 1.7.0_9 Oracle JRE(Linux Production Release) 1.7.0_8 Oracle JRE(Linux Production Release) 1.7.0_17 Oracle JRE(Linux Production Release) 1.7.0_15 Oracle JRE(Linux Production Release) 1.7.0_14 Oracle JRE(Linux Production Release) 1.7.0_13 Oracle JRE(Linux Production Release) 1.7.0_11 Oracle JRE(Linux Production Release) 1.7.0_10 Oracle JRE (Windows Production Release) 1.7.0_7 Oracle JRE (Windows Production Release) 1.7.0_4 Oracle JRE (Windows Production Release) 1.7.0_2 Oracle JRE (Windows Production Release) 1.7.0_17 Oracle JRE (Solaris Production Release) 1.7.0_7 Oracle JRE (Solaris Production Release) 1.7.0_4 Oracle JRE (Solaris Production Release) 1.7.0_2 Oracle JRE (Solaris Production Release) 1.7.0_17 Oracle JRE (Linux Production Release) 1.7.0_7 Oracle JRE (Linux Production Release) 1.7.0_4 Oracle JRE (Linux Production Release) 1.7.0_2 Oracle JRE (Linux Production Release) 1.7.0_17 Oracle JRE (Linux Production Release) 1.7.0_13 Oracle JRE (Linux Production Release) 1.7.0_12 Oracle JDK(Windows Production Release) 1.7.0_9 Oracle JDK(Windows Production Release) 1.7.0_8 Oracle JDK(Windows Production Release) 1.7.0_17 Oracle JDK(Windows Production Release) 1.7.0_15 Oracle JDK(Windows Production Release) 1.7.0_14 Oracle JDK(Windows Production Release) 1.7.0_13 Oracle JDK(Windows Production Release) 1.7.0_12 Oracle JDK(Windows Production Release) 1.7.0_11 Oracle JDK(Windows Production Release) 1.7.0_10 Oracle JDK(Solaris Production Release) 1.7.0_9 Oracle JDK(Solaris Production Release) 1.7.0_8 Oracle JDK(Solaris Production Release) 1.7.0_17 Oracle JDK(Solaris Production Release) 1.7.0_15 Oracle JDK(Solaris Production Release) 1.7.0_14 Oracle JDK(Solaris Production Release) 1.7.0_13 Oracle JDK(Solaris Production Release) 1.7.0_12 Oracle JDK(Linux Production Release) 1.7.0_9 Oracle JDK(Linux Production Release) 1.7.0_8 Oracle JDK(Linux Production Release) 1.7.0_17 Oracle JDK(Linux Production Release) 1.7.0_15 Oracle JDK(Linux Production Release) 1.7.0_14 Oracle JDK(Linux Production Release) 1.7.0_13 Oracle JDK(Linux Production Release) 1.7.0_11 Oracle JDK(Linux Production Release) 1.7.0_10 Oracle JDK (Windows Production Release) 1.7 Oracle JDK (Windows Production Release) 1.7.0_7 Oracle JDK (Windows Production Release) 1.7.0_4 Oracle JDK (Windows Production Release) 1.7.0_2 Oracle JDK (Windows Production Release) 1.7.0_17 Oracle JDK (Solaris Production Release) 1.7 Oracle JDK (Solaris Production Release) 1.7.0_7 Oracle JDK (Solaris Production Release) 1.7.0_4 Oracle JDK (Solaris Production Release) 1.7.0_2 Oracle JDK (Solaris Production Release) 1.7.0_13 Oracle JDK (Solaris Production Release) 1.7.0_11 Oracle JDK (Solaris Production Release) 1.7.0_10 Oracle JDK (Linux Production Release) 1.7 Oracle JDK (Linux Production Release) 1.7.0_7 Oracle JDK (Linux Production Release) 1.7.0_4 Oracle JDK (Linux Production Release) 1.7.0_2 Oracle JDK (Linux Production Release) 1.7.0_17 Oracle JDK (Linux Production Release) 1.7.0_13 Oracle JDK (Linux Production Release) 1.7.0_12 Oracle Enterprise Linux 6.2 Oracle Enterprise Linux 6 Oracle Enterprise Linux 5 Mandriva Business Server 1 X86 64 Mandriva Business Server 1 MandrakeSoft Enterprise Server 5 x86_64 MandrakeSoft Enterprise Server 5 IBM WebSphere Operational Decision Management 7.5.0.0 IBM WebSphere ILOG JRules 7.1 IBM Virtualization Engine TS7700 0 IBM Tivoli System Automation for Integrated Operations Management 2.1 IBM Tivoli System Automation Application Manager 3.2.2 IBM Tivoli System Automation Application Manager 3.2.1 IBM Tivoli System Automation Application Manager 3.2 IBM Tivoli System Automation Application Manager 3.1 IBM Tivoli System Automation (TSA) for Multiplatforms 3.2.2 IBM Tivoli System Automation (TSA) for Multiplatforms 3.2.1 IBM Tivoli System Automation (TSA) for Multiplatforms 3.2 IBM Tivoli System Automation (TSA) for Multiplatforms 3.1 IBM Tivoli Remote Control 5.1.2 IBM Tivoli Monitoring 6.3 IBM Tivoli Monitoring 6.2.3 IBM Tivoli Monitoring 6.2.2 IBM Tivoli Monitoring 6.2.1 IBM Tivoli Monitoring 6.2 IBM Tivoli Endpoint Manager for Remote Control 9.0 IBM Tivoli Endpoint Manager for Remote Control 8.2.1 IBM Tivoli Composite Application Manager for Transactions 7.3.0 IBM Tivoli Composite Application Manager for Transactions 7.2.0.2 IBM Tivoli Composite Application Manager for Transactions 7.2.0.1 IBM Tivoli Composite Application Manager for Transactions 7.2.0 IBM Tivoli Composite Application Manager for Transactions 7.1.0.2 IBM Tivoli Composite Application Manager for Transactions 7.1.0.1 IBM Tivoli Composite Application Manager for Transactions 7.1.0 IBM Smart Analytics System 5600 9.7 IBM Rational Host On-Demand 11.0 IBM Rational Host On-Demand 11.0.7 IBM Operational Decision Manager 8.5 IBM Operational Decision Manager 8.0 IBM Maximo Asset Management Essentials 7.5 IBM Maximo Asset Management Essentials 7.1 IBM Maximo Asset Management Essentials 6.2 IBM Maximo Asset Management 7.2.1 IBM Maximo Asset Management 7.1.2 IBM Maximo Asset Management 7.1.1 IBM Maximo Asset Management 6.2.8 IBM Maximo Asset Management 6.2.7 IBM Maximo Asset Management 6.2.6 IBM Maximo Asset Management 6.2.5 IBM Maximo Asset Management 6.2.4 IBM Maximo Asset Management 6.2.3 IBM Maximo Asset Management 6.2.2 IBM Maximo Asset Management 6.2.1 IBM Maximo Asset Management 7.5 IBM Maximo Asset Management 7.2 IBM Maximo Asset Management 7.1 IBM Maximo Asset Management 6.2 IBM Lotus Notes 8.5.3 IBM Lotus Notes 8.5.2 IBM Lotus Notes 8.5.1 IBM Lotus Notes 8.0.2 IBM Lotus Notes 9.0 IBM Lotus Notes 8.5.2.3 IBM Lotus Notes 8.5.2.2 IBM Lotus Notes 8.5.2.1 IBM Lotus Notes 8.5.1.5 IBM Lotus Notes 8.5.1.4 IBM Lotus Notes 8.5.1.3 IBM Lotus Notes 8.5.1.2 IBM Lotus Notes 8.5.0.1 IBM Lotus Notes 8.5 IBM Lotus Notes 8.0.2.6 IBM Lotus Notes 8.0.2.5 IBM Lotus Notes 8.0.2.4 IBM Lotus Notes 8.0.2.3 IBM Lotus Notes 8.0.2.2 IBM Lotus Notes 8.0.2.1 IBM Lotus Notes 8.0 IBM Lotus Domino 8.5.4 IBM Lotus Domino 8.5.3 IBM Lotus Domino 8.5.2 IBM Lotus Domino 8.5.1 IBM Lotus Domino 8.5 IBM Lotus Domino 8.0.2 IBM Lotus Domino 8.0.1 IBM Lotus Domino 9.0 IBM Lotus Domino 8.5.1.1 IBM Lotus Domino 8.5.0.1 IBM Lotus Domino 8.0.2.4 IBM Lotus Domino 8.0.2.3 IBM Lotus Domino 8.0.2.2 IBM Lotus Domino 8.0.2.1 IBM Lotus Domino 8.0 IBM Java SE 7 IBM Java SE 6 IBM Java SDK 7 IBM Java SDK 6 IBM Intelligent Operations Center 1.5.0.2 IBM Intelligent Operations Center 1.5.0.1 IBM Intelligent Operations Center 1.5 Gentoo Linux CentOS CentOS 6 CentOS CentOS 5 Avaya one-X Client Enablement Services 6.2 Avaya one-X Client Enablement Services 6.1.2 Avaya one-X Client Enablement Services 6.1.1 Avaya one-X Client Enablement Services 6.1 Avaya one-X Client Enablement Services 6.0 Avaya one-X Client Enablement Service 6.1 SP2 Avaya one-X Client Enablement Service 6.1 Sp1 Avaya one-X Client Enablement Service 6.1 Avaya one-X Client Enablement Service 6.0 SP3 Avaya one-X Client Enablement Service 6.0 SP2 Avaya one-X Client Enablement Service 6.0 SP1 Avaya Meeting Exchange 6.2 Avaya Meeting Exchange 6.0 Avaya Aura System Platform 6.2.2 Avaya Aura System Platform 6.2.1 Avaya Aura System Platform 6.0.2 Avaya Aura System Platform 6.0.1 Avaya Aura System Platform 6.3 Avaya Aura System Platform 6.2.1.0.9 Avaya Aura System Platform 6.2 SP1 Avaya Aura System Platform 6.2 Avaya Aura System Platform 6.0.3.9.3 Avaya Aura System Platform 6.0.3.8.3 Avaya Aura System Platform 6.0.3.0.3 Avaya Aura System Platform 6.0 SP3 Avaya Aura System Platform 6.0 SP2 Avaya Aura System Platform 6.0 Avaya Aura System Platform 1.1 Avaya Aura System Platform 1.0 Avaya Aura Experience Portal 6.0.2 + Avaya Communication Manager Server DEFINITY Server SI/CS + Avaya Communication Manager Server S8100 + Avaya Communication Manager Server S8300 + Avaya Communication Manager Server S8500 + Avaya Communication Manager Server S8700 Avaya Aura Experience Portal 6.0.1 Avaya Aura Experience Portal 6.0 SP2 + Avaya Communication Manager Server DEFINITY Server SI/CS + Avaya Communication Manager Server S8100 + Avaya Communication Manager Server S8300 + Avaya Communication Manager Server S8500 + Avaya Communication Manager Server S8700 Avaya Aura Experience Portal 6.0 SP1 Avaya Aura Experience Portal 6.0 Avaya Aura Conferencing 6.0 Standard Avaya Aura Conferencing 6.0 SP1 Standard Avaya Aura Communication Manager Utility Services 6.3 Avaya Aura Communication Manager Utility Services 6.2.5.0.15 Avaya Aura Communication Manager Utility Services 6.2.4.0.15 Avaya Aura Communication Manager Utility Services 6.2 Avaya Aura Communication Manager Utility Services 6.1.0.9.8 Avaya Aura Communication Manager Utility Services 6.1 SP 6.1.0.9.8 Avaya Aura Communication Manager Utility Services 6.1 + Avaya Communication Manager Server DEFINITY Server SI/CS + Avaya Communication Manager Server S8100 + Avaya Communication Manager Server S8300 + Avaya Communication Manager Server S8500 + Avaya Communication Manager Server S8700 Avaya Aura Communication Manager Utility Services 6.0

Not Vulnerable:	IBM Virtualization Engine TS7700 8.31.0.89 IBM Tivoli System Automation for Integrated Operations Management 2.1.1.4 IBM Rational Host On-Demand 11.0.8 IBM Lotus Notes 8.5.3 Fix Pack 5 IBM Lotus Domino 8.5.3 Fix Pack 5

Solution / Fix

Oracle Java SE CVE-2013-1488 Remote Code Execution Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.