CVE-2013-1493

EXPLOITED IN THE WILD RANSOMWARE

Oracle Jre < 1.7.0 - Memory Corruption

Title source: rule

Description

The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (crash) via an image with crafted raster parameters, which triggers (1) an out-of-bounds read or (2) memory corruption in the JVM, as exploited in the wild in February 2013.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/24904

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by Unknown, juan vazquez · rubypocjava

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/java_cmm.rb

View Code ZIP pw:eip

References (31)

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-0601.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-0603.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-0604.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1455.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1456.html

[Various Sources] http://blog.fireeye.com/research/2013/02/yaj0-yet-another-java-zero-day-2.html

[Various Sources] http://h20565.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04117626-1

[Various Sources] http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-March/022145.html

[Various Sources] https://krebsonsecurity.com/2013/03/new-java-0-day-attack-echoes-bit9-breach/

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00009.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00011.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00012.html

[Mailing List] http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00020.html

[US Government Resource] http://www.kb.cert.org/vuls/id/688246

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDVSA-2013:095

[Vendor Advisory] http://www.oracle.com/ocom/groups/public/%40otn/documents/webcontent/1915099.xml

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html

[Third Party Advisory] http://www.symantec.com/connect/blogs/latest-java-zero-day-shares-connections-bit9-security-incident

[Vendor Advisory] http://www.ubuntu.com/usn/USN-1755-2

[US Government Resource] http://www.us-cert.gov/ncas/alerts/TA13-064A

... and 11 more

Scores

EPSS 0.9298

EPSS Percentile 99.8%

Details

VulnCheck KEV 2013-03-04

InTheWild.io 2017-09-19

Ransomware Use Confirmed

CWE

CWE-119

Status published

Products (9)

oracle/jdk 1.6.0 update22 (16 CPE variants)

oracle/jdk 1.5.0 update36 (2 CPE variants)

oracle/jdk 1.7.0 (12 CPE variants)

oracle/jdk < 1.5.0

oracle/jdk < 1.6.0

oracle/jdk < 1.7.0

oracle/jre 1.7.0 (12 CPE variants)

oracle/jre 1.5.0 update36 (2 CPE variants)

oracle/jre 1.6.0 update22 (3 CPE variants)

Published Mar 05, 2013

Tracked Since Feb 18, 2026