Endpoint Vulnerability

Security Vulnerability CVE-2013-1571 in Oracle JRE

Description

Supported versions that are affected are 7 Update 21 and before, 6 Update 45 and before, 5.0 Update 45 and before and JavaFX 2.2.21 and before. Difficult to exploit vulnerability allows successful unauthenticated network attacks via HTTP. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Javadoc accessible data. Note: Applies to the Javadoc tool and documentation generated by the tool. This vulnerability can be exploited only through Javadoc output hosted on a web server. This addresses CERT/CC VU#225657 (See http://www.kb.cert.org/vuls/id/225657).

Affected Products

Java JRE

References

CVE-2013-1571,