Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11, 6 through Update 38, and 5.0 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect integrity via unknown vectors related to Networking. NOTE: the previous information is from the February 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to avoid triggering an exception during the deserialization of invalid InetSocketAddress data.

Remediation

References

CVE-2013-0433

Related Vulnerabilities

WordPress Plugin Open Graph for Facebook, Google+ and Twitter Card Tags Cross-Site Scripting (2.2.4)

WordPress Cryptographic Issues Vulnerability (CVE-2014-9037)

Internet Information Services Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-1999-0348)

WordPress Plugin Multi Rating Multiple Unspecified Vulnerabilities (3.2.1)

WordPress Plugin Visual Form Builder Unspecified Vulnerability (3.0.5)

Severity

Medium

Classification

CVE-2013-0433

Tags

Missing Update Known Vulnerabilities