CVE-2012-1713

Oracle JDK and JRE - Remote Code Execution in 2D Component

Title source: llm

Description

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, 1.4.2_37 and earlier, and JavaFX 2.1 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D.

References (20)

Core 20

Core References

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2012-0734.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2012-1243.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-1455.html

Vendor Advisory vendor-advisory x_refsource_redhat

http://rhn.redhat.com/errata/RHSA-2013-1456.html

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00035.html

Third Party Advisory vendor-advisory x_refsource_gentoo

http://security.gentoo.org/glsa/glsa-201406-32.xml

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00020.html

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00032.html

Vendor Advisory x_refsource_confirm

http://www.oracle.com/technetwork/topics/security/javacpujun2012-1515912.html

Various Sources mailing-list x_refsource_mlist

http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2012-June/019076.html

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16502

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/50659

Mailing List vendor-advisory x_refsource_hp

http://marc.info/?l=bugtraq&m=134496371727681&w=2

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00028.html

Vendor Advisory vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDVSA-2012:095

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/53946

Vendor Advisory x_refsource_confirm

http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html

Various Sources x_refsource_confirm

http://www.ibm.com/support/docview.wss?uid=swg21615246

Vendor Advisory vendor-advisory x_refsource_mandriva

http://www.mandriva.com/security/advisories?name=MDVSA-2013:150

Third Party Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/51080

Scores

EPSS 0.0643

EPSS Percentile 91.2%

Details

Status published

Products (9)

oracle/javafx < 2.1

oracle/jdk < 1.6.0

oracle/jdk < 1.7.0

oracle/jre < 1.6.0

oracle/jre < 1.7.0

sun/jdk < 1.4.2_37

sun/jdk < 1.5.0

sun/jre < 1.4.2_37

sun/jre < 1.5.0

Published Jun 16, 2012

Tracked Since Feb 18, 2026