CVSS: 10.0EPSS: 94%CPEs: 188EXPL: 0CVE-2013-2473 – Oracle Java ByteComponentRaster Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-2473
Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to "Incorrect ByteBandedRaster size checks" in 2D. ... Oracle no ha comentado sobre quejas de otros proveedores de que este problema permite a atacantes remotos eludir la sandbox Java a través de vectores relacionados con "comprobación de talla incorrecta ByteBandedRaster" en 2D. • http://advisories.mageia.org/MGASA-2013-0185.html http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880 http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/259d4998ce2f http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00026.html http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00027.html http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00028.html http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00029.html http:/&#x •
CVSS: 5.8EPSS: 0%CPEs: 30EXPL: 0CVE-2013-2458 – OpenJDK: Method handles (Libraries, 8009424)
https://notcve.org/view.php?id=CVE-2013-2458
Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via "an error related to method handles." ... Oracle no ha comentado sobre las afirmaciones de otro proveedor de que este problema permite a los atacantes remotos omitir el sandbox de Java por medio de "an error related to method handles". • http://advisories.mageia.org/MGASA-2013-0185.html http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/9efb5fb77027 http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00027.html http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00028.html http://marc.info/?l=bugtraq&m=137545505800971&w=2 http://rhn.redhat.com/errata/RHSA-2013-0963.html http://rhn.redhat.com/errata/RHSA-2013-1060.html http://secunia.com/advisories/54154 http://security.gentoo.org/gls •
CVSS: 9.3EPSS: 96%CPEs: 30EXPL: 1CVE-2013-2460 – Java Applet - ProviderSkeleton Insecure Invoke Method
https://notcve.org/view.php?id=CVE-2013-2460
Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to "insufficient access checks" in the tracing component. ... Oracle no ha comentado sobre las afirmaciones de otro proveedor de que este problema permite a los atacantes remotos omitir el sandbox de Java por medio de vectores relacionados con "insufficient access checks" en el componente de seguimiento. • https://www.exploit-db.com/exploits/26529 http://advisories.mageia.org/MGASA-2013-0185.html http://hg.openjdk.java.net/jdk7u/jdk7u/jdk/rev/160cde99bb1a http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00027.html http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00028.html http://marc.info/?l=bugtraq&m=137545505800971&w=2 http://rhn.redhat.com/errata/RHSA-2013-0963.html http://rhn.redhat.com/errata/RHSA-2013-1060.html http://secunia.com/advisorie •
CVSS: 10.0EPSS: 94%CPEs: 188EXPL: 0CVE-2013-2469 – Oracle Java CMMImageLayout Memory Corruption Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-2469
Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to "Incorrect image layout verification" in 2D. ... Oracle no ha comentado sobre las afirmaciones de otro proveedor de que este problema permite a los atacantes remotos omitir el sandbox de Java por medio de vectores relacionados con la "Incorrect image attribute verification" en 2D. • http://advisories.mageia.org/MGASA-2013-0185.html http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=975120 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880 http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/64055b403176 http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00026.html http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00027.html http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00028.html http://lists.opensuse •
CVSS: 10.0EPSS: 94%CPEs: 188EXPL: 0CVE-2013-2471 – Oracle Java IntegerComponentRaster Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-2471
Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to "Incorrect IntegerComponentRaster size checks." ... Oracle no ha comentado sobre quejas de otros proveedores de que este problema permite a atacantes remotos eludir la sandbox Java a través de vectores relacionados con "comprobación de talla incorrecta IntegerComponentRaster". • http://advisories.mageia.org/MGASA-2013-0185.html http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03898880 http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/4c3d38927a26 http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00026.html http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00027.html http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00028.html http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00029.html http:/&#x •