製品・ソフトウェアに関する情報

JVN脆弱性詳細

Oracle Java SE の Java Runtime Environment の 2D における任意のコードを実行される脆弱性

Title	Oracle Java SE の Java Runtime Environment の 2D における任意のコードを実行される脆弱性
Summary	Oracle Java SE の Java Runtime Environment (JRE) の 2D には、任意のコードを実行される脆弱性が存在します。本脆弱性は、CVE-2013-1493 とは異なる脆弱性です。
Possible impacts	第三者により、任意のコードを実行される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	March 4, 2013, midnight
Registration Date	March 7, 2013, 4:11 p.m.
Last Update	March 18, 2015, 4:34 p.m.

CVSS2.0 : 危険
Score	10
Vector	AV:N/AC:L/Au:N/C:C/I:C/A:C

Affected System

サン・マイクロシステムズ

JDK 5.0 Update 33 およびそれ以前

JDK 6 Update 21 およびそれ以前

JRE 5.0 Update 33 およびそれ以前

JRE 6 Update 21 およびそれ以前

オラクル

JDK 5.0 Update 40 およびそれ以前

JDK 6 Update 41 およびそれ以前

JDK 7 Update 15 およびそれ以前

JRE 5.0 Update 40 およびそれ以前

JRE 6 Update 41 およびそれ以前

JRE 7 Update 15 およびそれ以前

IBM

IBM Domino (旧 IBM Lotus Domino) 8.0.x

IBM Domino (旧 IBM Lotus Domino) 8.5.x

IBM Domino (旧 IBM Lotus Domino) 9.0

IBM Notes 8.0.x

IBM Notes 8.5.x

IBM Notes 9.0

アップル

Apple Mac OS X v10.6.8

Apple Mac OS X v10.7 およびそれ以降

Apple Mac OS X v10.8 およびそれ以降

Apple Mac OS X Server v10.6.8

Apple Mac OS X Server v10.7 およびそれ以降

日立

Cosminexus Application Server Enterprise Version 6

Cosminexus Application Server Standard Version 6

Cosminexus Application Server Version 5

Cosminexus Client Version 6

Cosminexus Developer Light Version 6

Cosminexus Developer Professional Version 6

Cosminexus Developer Standard Version 6

Cosminexus Developer Version 5

Cosminexus Developer's Kit for Java(TM)

Cosminexus Primary Server Base

Cosminexus Server - Standard Edition Version 4

Cosminexus Server - Web Edition Version 4

Cosminexus Studio - Standard Edition Version 4

Cosminexus Studio - Web Edition Version 4

Cosminexus Studio Version 5

uCosminexus Application Server -R

uCosminexus Application Server Express

uCosminexus Application Server Light

uCosminexus Application Server Enterprise

uCosminexus Application Server Smart Edition

uCosminexus Application Server Standard

uCosminexus Application Server Standard -R

uCosminexus Client

uCosminexus Client for Plug-in

uCosminexus Developer 01

uCosminexus Developer Professional

uCosminexus Developer Professional for Plug-in

uCosminexus Developer Light

uCosminexus Developer Standard

uCosminexus Operator

uCosminexus Primary Server Base

uCosminexus Server Standard-R

uCosminexus Service Architect

uCosminexus Service Platform

uCosminexus Service Platform - Messaging

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2013-0809	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0809
National Vulnerability Database (NVD)
2	CVE-2013-0809	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0809

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-noinfo	https://www.ipa.go.jp/security/vuln/CWE.html#CWEnoinfo

ベンダー情報

No	Name	URL
Apple Security Updates
1	HT5676	https://support.apple.com/kb/HT5676
2	HT5677	http://support.apple.com/kb/HT5677
Apple セキュリティアップデート
3	HT5676	http://support.apple.com/kb/HT5676?viewlocale=ja_JP
4	HT5677	http://support.apple.com/kb/HT5677?viewlocale=ja_JP
Hitachi Software Vulnerability Information
5	HS13-005	http://www.hitachi.co.jp/Prod/comp/soft1/global/security/info/vuls/HS13-005/index.html
HP Security Bulletin
6	HPSBUX02857 SSRT101103	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c03714148
7	HPSBUX02864 SSRT101156	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c03725347
IBM Support Document
8	1644918	http://www-01.ibm.com/support/docview.wss?uid=swg21644918
IBM セキュリティー情報
9	1646738	http://www-01.ibm.com/support/docview.wss?uid=swg21646738
opensuse-security-announce
10	openSUSE-SU-2013:0430	http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00009.html
11	openSUSE-SU-2013:0438	http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00012.html
12	SUSE-SU-2013:0434	http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00011.html
Oracle Critical Patch Update
13	Oracle Security Alert for CVE-2013-1493	http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html
14	Text Form of Oracle Security Alert - CVE-2013-1493 Risk Matrices	http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493verbose-1915091.html
Oracle Security Alert
15	Oracle Security Alert for CVE-2013-1493 - Beta Oracle CVRF	http://www.oracle.com/ocom/groups/public/@otn/documents/webcontent/1915099.xml
Red Hat Security Advisory
16	RHSA-2013:0601	http://rhn.redhat.com/errata/RHSA-2013-0601.html
17	RHSA-2013:0603	http://rhn.redhat.com/errata/RHSA-2013-0603.html
18	RHSA-2013:0604	http://rhn.redhat.com/errata/RHSA-2013-0604.html
19	RHSA-2013:1455	http://rhn.redhat.com/errata/RHSA-2013-1455.html
20	RHSA-2013:1456	http://rhn.redhat.com/errata/RHSA-2013-1456.html
SECURITY BLOG
21	Security Alert CVE-2013-1493 Released	https://blogs.oracle.com/security/entry/security_alert_cve_2013_1493
Ubuntu Security Notice
22	USN-1755-2	http://www.ubuntu.com/usn/USN-1755-2
ソフトウェア製品セキュリティ情報
23	HS13-005	http://www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS13-005/index.html

その他

No	Name	URL
IPA 緊急対策情報
1	Oracle Java の脆弱性対策について(CVE-2013-1493)	http://www.ipa.go.jp/security/ciadr/vul/20130305-jre.html
JPCERT 注意喚起
2	JPCERT-AT-2013-0014	http://www.jpcert.or.jp/at/2013/at130014.txt
JVN
3	JVNTA13-064A	http://jvn.jp/cert/JVNTA13-064A/
US-CERT Technical Cyber Security Alert
4	TA13-064A	http://www.us-cert.gov/ncas/alerts/TA13-064A
US-CERT Vulnerability Note
5	VU#688246	http://www.kb.cert.org/vuls/id/688246
関連文書
6	MGASA-2013-0088	https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0088

Change Log

No	Changed Details	Date of change
0	[2013年03月07日] 掲載 [2013年03月27日] 影響を受けるシステム：日立 (HS13-005) の情報を追加ベンダ情報：日立 (HS13-005) を追加 [2013年04月10日] ベンダ情報：Novell (openSUSE-SU-2013:0438) を追加ベンダ情報：Novell (SUSE-SU-2013:0434) を追加ベンダ情報：Novell (openSUSE-SU-2013:0430) を追加ベンダ情報：レッドハット (RHSA-2013:0604) を追加ベンダ情報：レッドハット (RHSA-2013:0603) を追加ベンダ情報：レッドハット (RHSA-2013:0601) を追加ベンダ情報：Ubuntu (USN-1755-2) を追加 [2013年06月13日] ベンダ情報：ヒューレット・パッカード (HPSBUX02857 SSRT101103) を追加ベンダ情報：ヒューレット・パッカード (HPSBUX02864 SSRT101156) を追加 [2013年11月12日] ベンダ情報：レッドハット (RHSA-2013:1455) を追加ベンダ情報：レッドハット (RHSA-2013:1456) を追加 [2014年02月26日] ベンダ情報：オラクル (Oracle Security Alert for CVE-2013-1493 - Beta Oracle CVRF) を追加参考情報：関連文書 (MGASA-2013-0088) を追加 [2014年06月26日] 影響を受けるシステム：内容を更新ベンダ情報：IBM (1644918) を追加ベンダ情報：IBM (1646738) を追加 [2015年03月18日] 影響を受けるシステム：内容を更新	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2013-0809

Summary	Unspecified vulnerability in the 2D component in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2013-1493.
Publication Date	March 6, 2013, 7:06 a.m.
Registration Date	Jan. 26, 2021, 3:34 p.m.
Last Update	Nov. 21, 2024, 10:48 a.m.

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:sun:jre:1.6.0:update_3::::::
cpe:2.3:a:sun:jre:1.6.0:update_5::::::
cpe:2.3:a:sun:jre:1.6.0:update_13::::::
cpe:2.3:a:sun:jre:1.6.0:update_1::::::
cpe:2.3:a:sun:jre:1.6.0:update_2::::::
cpe:2.3:a:sun:jre:1.6.0:update_16::::::
cpe:2.3:a:sun:jre:1.6.0:update_20::::::
cpe:2.3:a:sun:jre:1.6.0:update_15::::::
cpe:2.3:a:sun:jre:1.6.0:update_6::::::
cpe:2.3:a:sun:jre:1.6.0:update_19::::::
cpe:2.3:a:sun:jre:1.6.0:::::::*
cpe:2.3:a:sun:jre:1.6.0:update_18::::::
cpe:2.3:a:sun:jre:1.6.0:update_10::::::
cpe:2.3:a:sun:jre:1.6.0:update_17::::::
cpe:2.3:a:sun:jre:1.6.0:update_21::::::
cpe:2.3:a:sun:jre:1.6.0:update_7::::::
cpe:2.3:a:sun:jre:1.6.0:update_14::::::
cpe:2.3:a:sun:jre:1.6.0:update_4::::::
cpe:2.3:a:sun:jre:1.6.0:update_9::::::
cpe:2.3:a:sun:jre:1.6.0:update_12::::::
cpe:2.3:a:sun:jre:1.6.0:update_11::::::
cpe:2.3:a:oracle:jre:1.6.0:update30::::::
cpe:2.3:a:oracle:jre:1.6.0:update39::::::
cpe:2.3:a:oracle:jre:1.6.0:update32::::::
cpe:2.3:a:oracle:jre:1.6.0:update35::::::
cpe:2.3:a:oracle:jre:1.6.0:update25::::::
cpe:2.3:a:oracle:jre:1.6.0:update33::::::
cpe:2.3:a:oracle:jre:1.6.0:update24::::::
cpe:2.3:a:oracle:jre:1.6.0:update26::::::
cpe:2.3:a:oracle:jre:1.6.0:update27::::::
cpe:2.3:a:oracle:jre::update41::::::*		1.6.0
cpe:2.3:a:oracle:jre:1.6.0:update22::::::
cpe:2.3:a:oracle:jre:1.6.0:update31::::::
cpe:2.3:a:oracle:jre:1.6.0:update23::::::
cpe:2.3:a:oracle:jre:1.6.0:update38::::::
cpe:2.3:a:oracle:jre:1.6.0:update37::::::
cpe:2.3:a:oracle:jre:1.6.0:update34::::::
cpe:2.3:a:oracle:jre:1.6.0:update29::::::

Configuration2	or higher	or less	more than	less than
cpe:2.3:a:sun:jdk:1.6.0:update_4::::::
cpe:2.3:a:sun:jdk:1.6.0:update_7::::::
cpe:2.3:a:sun:jdk:1.6.0:update_19::::::
cpe:2.3:a:sun:jdk:1.6.0:update_13::::::
cpe:2.3:a:sun:jdk:1.6.0:update_3::::::
cpe:2.3:a:sun:jdk:1.6.0:update_11::::::
cpe:2.3:a:sun:jdk:1.6.0:update_10::::::
cpe:2.3:a:sun:jdk:1.6.0:update_14::::::
cpe:2.3:a:sun:jdk:1.6.0:::::::*
cpe:2.3:a:sun:jdk:1.6.0:update_17::::::
cpe:2.3:a:sun:jdk:1.6.0:update_5::::::
cpe:2.3:a:sun:jdk:1.6.0:update2::::::
cpe:2.3:a:sun:jdk:1.6.0:update1_b06::::::
cpe:2.3:a:sun:jdk:1.6.0:update_21::::::
cpe:2.3:a:sun:jdk:1.6.0:update_16::::::
cpe:2.3:a:sun:jdk:1.6.0:update1::::::
cpe:2.3:a:sun:jdk:1.6.0:update_15::::::
cpe:2.3:a:sun:jdk:1.6.0:update_12::::::
cpe:2.3:a:sun:jdk:1.6.0:update_18::::::
cpe:2.3:a:sun:jdk:1.6.0:update_6::::::
cpe:2.3:a:sun:jdk:1.6.0:update_20::::::
cpe:2.3:a:oracle:jdk:1.6.0:update33::::::
cpe:2.3:a:oracle:jdk:1.6.0:update25::::::
cpe:2.3:a:oracle:jdk:1.6.0:update29::::::
cpe:2.3:a:oracle:jdk:1.6.0:update31::::::
cpe:2.3:a:oracle:jdk:1.6.0:update27::::::
cpe:2.3:a:oracle:jdk:1.6.0:update24::::::
cpe:2.3:a:oracle:jdk:1.6.0:update23::::::
cpe:2.3:a:oracle:jdk:1.6.0:update22::::::
cpe:2.3:a:oracle:jdk:1.6.0:update32::::::
cpe:2.3:a:oracle:jdk:1.6.0:update26::::::
cpe:2.3:a:oracle:jdk:1.6.0:update34::::::
cpe:2.3:a:oracle:jdk:1.6.0:update30::::::
cpe:2.3:a:oracle:jdk:1.6.0:update38::::::
cpe:2.3:a:oracle:jdk:1.6.0:update39::::::
cpe:2.3:a:oracle:jdk:1.6.0:update37::::::
cpe:2.3:a:oracle:jdk:1.6.0:update35::::::
cpe:2.3:a:oracle:jdk::update41::::::*		1.6.0

Configuration3	or higher	or less	more than	less than
cpe:2.3:a:sun:jre:1.5.0:update22::::::
cpe:2.3:a:sun:jre:1.5.0:update31::::::
cpe:2.3:a:sun:jre:1.5.0:::::::*
cpe:2.3:a:sun:jre:1.5.0:update18::::::
cpe:2.3:a:sun:jre:1.5.0:update27::::::
cpe:2.3:a:sun:jre:1.5.0:update2::::::
cpe:2.3:a:sun:jre:1.5.0:update13::::::
cpe:2.3:a:sun:jre:1.5.0:update24::::::
cpe:2.3:a:sun:jre:1.5.0:update12::::::
cpe:2.3:a:sun:jre:1.5.0:update26::::::
cpe:2.3:a:sun:jre:1.5.0:update8::::::
cpe:2.3:a:sun:jre:1.5.0:update16::::::
cpe:2.3:a:sun:jre:1.5.0:update21::::::
cpe:2.3:a:sun:jre:1.5.0:update11::::::
cpe:2.3:a:sun:jre:1.5.0:update15::::::
cpe:2.3:a:sun:jre:1.5.0:update7::::::
cpe:2.3:a:sun:jre:1.5.0:update3::::::
cpe:2.3:a:sun:jre:1.5.0:update20::::::
cpe:2.3:a:sun:jre:1.5.0:update25::::::
cpe:2.3:a:sun:jre:1.5.0:update5::::::
cpe:2.3:a:sun:jre:1.5.0:update14::::::
cpe:2.3:a:sun:jre:1.5.0:update6::::::
cpe:2.3:a:sun:jre:1.5.0:update33::::::
cpe:2.3:a:sun:jre:1.5.0:update9::::::
cpe:2.3:a:sun:jre:1.5.0:update1::::::
cpe:2.3:a:sun:jre:1.5.0:update19::::::
cpe:2.3:a:sun:jre:1.5.0:update10::::::
cpe:2.3:a:sun:jre:1.5.0:update28::::::
cpe:2.3:a:sun:jre:1.5.0:update4::::::
cpe:2.3:a:sun:jre:1.5.0:update23::::::
cpe:2.3:a:sun:jre:1.5.0:update29::::::
cpe:2.3:a:sun:jre:1.5.0:update17::::::
cpe:2.3:a:oracle:jre::update40::::::*		1.5.0
cpe:2.3:a:oracle:jre:1.5.0:update36::::::
cpe:2.3:a:oracle:jre:1.5.0:update38::::::

Configuration4	or higher	or less	more than	less than
cpe:2.3:a:sun:jdk:1.5.0:update20::::::
cpe:2.3:a:sun:jdk:1.5.0:update15::::::
cpe:2.3:a:sun:jdk:1.5.0:update18::::::
cpe:2.3:a:sun:jdk:1.5.0:update27::::::
cpe:2.3:a:sun:jdk:1.5.0:update3::::::
cpe:2.3:a:sun:jdk:1.5.0:update21::::::
cpe:2.3:a:sun:jdk:1.5.0:update31::::::
cpe:2.3:a:sun:jdk:1.5.0:update11::::::
cpe:2.3:a:sun:jdk:1.5.0:update26::::::
cpe:2.3:a:sun:jdk:1.5.0:update16::::::
cpe:2.3:a:sun:jdk:1.5.0:update17::::::
cpe:2.3:a:sun:jdk:1.5.0:update9::::::
cpe:2.3:a:sun:jdk:1.5.0:update22::::::
cpe:2.3:a:sun:jdk:1.5.0:update29::::::
cpe:2.3:a:sun:jdk:1.5.0:update28::::::
cpe:2.3:a:sun:jdk:1.5.0:update6::::::
cpe:2.3:a:sun:jdk:1.5.0:update14::::::
cpe:2.3:a:sun:jdk:1.5.0:update23::::::
cpe:2.3:a:sun:jdk:1.5.0:update33::::::
cpe:2.3:a:sun:jdk:1.5.0:update11_b03::::::
cpe:2.3:a:sun:jdk:1.5.0:update1::::::
cpe:2.3:a:sun:jdk:1.5.0:update4::::::
cpe:2.3:a:sun:jdk:1.5.0:update7::::::
cpe:2.3:a:sun:jdk:1.5.0:::::::*
cpe:2.3:a:sun:jdk:1.5.0:update12::::::
cpe:2.3:a:sun:jdk:1.5.0:update5::::::
cpe:2.3:a:sun:jdk:1.5.0:update24::::::
cpe:2.3:a:sun:jdk:1.5.0:update25::::::
cpe:2.3:a:sun:jdk:1.5.0:update7_b03::::::
cpe:2.3:a:sun:jdk:1.5.0:update2::::::
cpe:2.3:a:sun:jdk:1.5.0:update19::::::
cpe:2.3:a:sun:jdk:1.5.0:update13::::::
cpe:2.3:a:sun:jdk:1.5.0:update8::::::
cpe:2.3:a:sun:jdk:1.5.0:update10::::::
cpe:2.3:a:oracle:jdk::update40::::::*		1.5.0
cpe:2.3:a:oracle:jdk:1.5.0:update36::::::
cpe:2.3:a:oracle:jdk:1.5.0:update38::::::

Configuration5	or higher	or less	more than	less than
cpe:2.3:a:oracle:jre:1.7.0:update9::::::
cpe:2.3:a:oracle:jre:1.7.0:update6::::::
cpe:2.3:a:oracle:jre:1.7.0:update3::::::
cpe:2.3:a:oracle:jre:1.7.0:update13::::::
cpe:2.3:a:oracle:jre:1.7.0:update10::::::
cpe:2.3:a:oracle:jre:1.7.0:update11::::::
cpe:2.3:a:oracle:jre:1.7.0:update2::::::
cpe:2.3:a:oracle:jre:1.7.0:update5::::::
cpe:2.3:a:oracle:jre::update15::::::*		1.7.0
cpe:2.3:a:oracle:jre:1.7.0:update4::::::
cpe:2.3:a:oracle:jre:1.7.0:::::::*
cpe:2.3:a:oracle:jre:1.7.0:update7::::::
cpe:2.3:a:oracle:jre:1.7.0:update1::::::

Configuration6	or higher	or less	more than	less than
cpe:2.3:a:oracle:jdk:1.7.0:update6::::::
cpe:2.3:a:oracle:jdk:1.7.0:update5::::::
cpe:2.3:a:oracle:jdk:1.7.0:update7::::::
cpe:2.3:a:oracle:jdk:1.7.0:update2::::::
cpe:2.3:a:oracle:jdk:1.7.0:update13::::::
cpe:2.3:a:oracle:jdk:1.7.0:update11::::::
cpe:2.3:a:oracle:jdk:1.7.0:::::::*
cpe:2.3:a:oracle:jdk:1.7.0:update9::::::
cpe:2.3:a:oracle:jdk:1.7.0:update3::::::
cpe:2.3:a:oracle:jdk::update15::::::*		1.7.0
cpe:2.3:a:oracle:jdk:1.7.0:update1::::::
cpe:2.3:a:oracle:jdk:1.7.0:update10::::::
cpe:2.3:a:oracle:jdk:1.7.0:update4::::::

Related information, measures and tools

No	URL	タグ
1	http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00009.html
2	http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00009.html
3	http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00011.html
4	http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00011.html
5	http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00012.html
6	http://lists.opensuse.org/opensuse-security-announce/2013-03/msg00012.html
7	http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00020.html
8	http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00020.html
9	http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-March/022145.html
10	http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-March/022145.html
11	http://marc.info/?l=bugtraq&m=136439120408139&w=2
12	http://marc.info/?l=bugtraq&m=136439120408139&w=2
13	http://marc.info/?l=bugtraq&m=136439120408139&w=2
14	http://marc.info/?l=bugtraq&m=136439120408139&w=2
15	http://marc.info/?l=bugtraq&m=136570436423916&w=2
16	http://marc.info/?l=bugtraq&m=136570436423916&w=2
17	http://marc.info/?l=bugtraq&m=136570436423916&w=2
18	http://marc.info/?l=bugtraq&m=136570436423916&w=2
19	http://rhn.redhat.com/errata/RHSA-2013-0601.html
20	http://rhn.redhat.com/errata/RHSA-2013-0601.html
21	http://rhn.redhat.com/errata/RHSA-2013-0603.html
22	http://rhn.redhat.com/errata/RHSA-2013-0603.html
23	http://rhn.redhat.com/errata/RHSA-2013-0604.html
24	http://rhn.redhat.com/errata/RHSA-2013-0604.html
25	http://rhn.redhat.com/errata/RHSA-2013-1455.html
26	http://rhn.redhat.com/errata/RHSA-2013-1455.html
27	http://rhn.redhat.com/errata/RHSA-2013-1456.html
28	http://rhn.redhat.com/errata/RHSA-2013-1456.html
29	http://security.gentoo.org/glsa/glsa-201406-32.xml
30	http://security.gentoo.org/glsa/glsa-201406-32.xml
31	http://www.kb.cert.org/vuls/id/688246	US Government Resource
32	http://www.kb.cert.org/vuls/id/688246	US Government Resource
33	http://www.mandriva.com/security/advisories?name=MDVSA-2013:095
34	http://www.mandriva.com/security/advisories?name=MDVSA-2013:095
35	http://www.oracle.com/ocom/groups/public/%40otn/documents/webcontent/1915099.xml
36	http://www.oracle.com/ocom/groups/public/%40otn/documents/webcontent/1915099.xml
37	http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html
38	http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html
39	http://www.securityfocus.com/bid/58296
40	http://www.securityfocus.com/bid/58296
41	http://www.ubuntu.com/usn/USN-1755-2
42	http://www.ubuntu.com/usn/USN-1755-2
43	http://www.us-cert.gov/ncas/alerts/TA13-064A	US Government Resource
44	http://www.us-cert.gov/ncas/alerts/TA13-064A	US Government Resource
45	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19076
46	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19076
47	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19320
48	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19320
49	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19479
50	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19479
51	https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0088
52	https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0088

Common Vulnerabilities List

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:sun:jre:1.6.0:update_3::::::
cpe:2.3:a:sun:jre:1.6.0:update_5::::::
cpe:2.3:a:sun:jre:1.6.0:update_13::::::
cpe:2.3:a:sun:jre:1.6.0:update_1::::::
cpe:2.3:a:sun:jre:1.6.0:update_2::::::
cpe:2.3:a:sun:jre:1.6.0:update_16::::::
cpe:2.3:a:sun:jre:1.6.0:update_20::::::
cpe:2.3:a:sun:jre:1.6.0:update_15::::::
cpe:2.3:a:sun:jre:1.6.0:update_6::::::
cpe:2.3:a:sun:jre:1.6.0:update_19::::::
cpe:2.3:a:sun:jre:1.6.0:::::::*
cpe:2.3:a:sun:jre:1.6.0:update_18::::::
cpe:2.3:a:sun:jre:1.6.0:update_10::::::
cpe:2.3:a:sun:jre:1.6.0:update_17::::::
cpe:2.3:a:sun:jre:1.6.0:update_21::::::
cpe:2.3:a:sun:jre:1.6.0:update_7::::::
cpe:2.3:a:sun:jre:1.6.0:update_14::::::
cpe:2.3:a:sun:jre:1.6.0:update_4::::::
cpe:2.3:a:sun:jre:1.6.0:update_9::::::
cpe:2.3:a:sun:jre:1.6.0:update_12::::::
cpe:2.3:a:sun:jre:1.6.0:update_11::::::
cpe:2.3:a:oracle:jre:1.6.0:update30::::::
cpe:2.3:a:oracle:jre:1.6.0:update39::::::
cpe:2.3:a:oracle:jre:1.6.0:update32::::::
cpe:2.3:a:oracle:jre:1.6.0:update35::::::
cpe:2.3:a:oracle:jre:1.6.0:update25::::::
cpe:2.3:a:oracle:jre:1.6.0:update33::::::
cpe:2.3:a:oracle:jre:1.6.0:update24::::::
cpe:2.3:a:oracle:jre:1.6.0:update26::::::
cpe:2.3:a:oracle:jre:1.6.0:update27::::::
cpe:2.3:a:oracle:jre::update41::::::*		1.6.0
cpe:2.3:a:oracle:jre:1.6.0:update22::::::
cpe:2.3:a:oracle:jre:1.6.0:update31::::::
cpe:2.3:a:oracle:jre:1.6.0:update23::::::
cpe:2.3:a:oracle:jre:1.6.0:update38::::::
cpe:2.3:a:oracle:jre:1.6.0:update37::::::
cpe:2.3:a:oracle:jre:1.6.0:update34::::::
cpe:2.3:a:oracle:jre:1.6.0:update29::::::

Configuration2	or higher	or less	more than	less than
cpe:2.3:a:sun:jdk:1.6.0:update_4::::::
cpe:2.3:a:sun:jdk:1.6.0:update_7::::::
cpe:2.3:a:sun:jdk:1.6.0:update_19::::::
cpe:2.3:a:sun:jdk:1.6.0:update_13::::::
cpe:2.3:a:sun:jdk:1.6.0:update_3::::::
cpe:2.3:a:sun:jdk:1.6.0:update_11::::::
cpe:2.3:a:sun:jdk:1.6.0:update_10::::::
cpe:2.3:a:sun:jdk:1.6.0:update_14::::::
cpe:2.3:a:sun:jdk:1.6.0:::::::*
cpe:2.3:a:sun:jdk:1.6.0:update_17::::::
cpe:2.3:a:sun:jdk:1.6.0:update_5::::::
cpe:2.3:a:sun:jdk:1.6.0:update2::::::
cpe:2.3:a:sun:jdk:1.6.0:update1_b06::::::
cpe:2.3:a:sun:jdk:1.6.0:update_21::::::
cpe:2.3:a:sun:jdk:1.6.0:update_16::::::
cpe:2.3:a:sun:jdk:1.6.0:update1::::::
cpe:2.3:a:sun:jdk:1.6.0:update_15::::::
cpe:2.3:a:sun:jdk:1.6.0:update_12::::::
cpe:2.3:a:sun:jdk:1.6.0:update_18::::::
cpe:2.3:a:sun:jdk:1.6.0:update_6::::::
cpe:2.3:a:sun:jdk:1.6.0:update_20::::::
cpe:2.3:a:oracle:jdk:1.6.0:update33::::::
cpe:2.3:a:oracle:jdk:1.6.0:update25::::::
cpe:2.3:a:oracle:jdk:1.6.0:update29::::::
cpe:2.3:a:oracle:jdk:1.6.0:update31::::::
cpe:2.3:a:oracle:jdk:1.6.0:update27::::::
cpe:2.3:a:oracle:jdk:1.6.0:update24::::::
cpe:2.3:a:oracle:jdk:1.6.0:update23::::::
cpe:2.3:a:oracle:jdk:1.6.0:update22::::::
cpe:2.3:a:oracle:jdk:1.6.0:update32::::::
cpe:2.3:a:oracle:jdk:1.6.0:update26::::::
cpe:2.3:a:oracle:jdk:1.6.0:update34::::::
cpe:2.3:a:oracle:jdk:1.6.0:update30::::::
cpe:2.3:a:oracle:jdk:1.6.0:update38::::::
cpe:2.3:a:oracle:jdk:1.6.0:update39::::::
cpe:2.3:a:oracle:jdk:1.6.0:update37::::::
cpe:2.3:a:oracle:jdk:1.6.0:update35::::::
cpe:2.3:a:oracle:jdk::update41::::::*		1.6.0

Configuration3	or higher	or less	more than	less than
cpe:2.3:a:sun:jre:1.5.0:update22::::::
cpe:2.3:a:sun:jre:1.5.0:update31::::::
cpe:2.3:a:sun:jre:1.5.0:::::::*
cpe:2.3:a:sun:jre:1.5.0:update18::::::
cpe:2.3:a:sun:jre:1.5.0:update27::::::
cpe:2.3:a:sun:jre:1.5.0:update2::::::
cpe:2.3:a:sun:jre:1.5.0:update13::::::
cpe:2.3:a:sun:jre:1.5.0:update24::::::
cpe:2.3:a:sun:jre:1.5.0:update12::::::
cpe:2.3:a:sun:jre:1.5.0:update26::::::
cpe:2.3:a:sun:jre:1.5.0:update8::::::
cpe:2.3:a:sun:jre:1.5.0:update16::::::
cpe:2.3:a:sun:jre:1.5.0:update21::::::
cpe:2.3:a:sun:jre:1.5.0:update11::::::
cpe:2.3:a:sun:jre:1.5.0:update15::::::
cpe:2.3:a:sun:jre:1.5.0:update7::::::
cpe:2.3:a:sun:jre:1.5.0:update3::::::
cpe:2.3:a:sun:jre:1.5.0:update20::::::
cpe:2.3:a:sun:jre:1.5.0:update25::::::
cpe:2.3:a:sun:jre:1.5.0:update5::::::
cpe:2.3:a:sun:jre:1.5.0:update14::::::
cpe:2.3:a:sun:jre:1.5.0:update6::::::
cpe:2.3:a:sun:jre:1.5.0:update33::::::
cpe:2.3:a:sun:jre:1.5.0:update9::::::
cpe:2.3:a:sun:jre:1.5.0:update1::::::
cpe:2.3:a:sun:jre:1.5.0:update19::::::
cpe:2.3:a:sun:jre:1.5.0:update10::::::
cpe:2.3:a:sun:jre:1.5.0:update28::::::
cpe:2.3:a:sun:jre:1.5.0:update4::::::
cpe:2.3:a:sun:jre:1.5.0:update23::::::
cpe:2.3:a:sun:jre:1.5.0:update29::::::
cpe:2.3:a:sun:jre:1.5.0:update17::::::
cpe:2.3:a:oracle:jre::update40::::::*		1.5.0
cpe:2.3:a:oracle:jre:1.5.0:update36::::::
cpe:2.3:a:oracle:jre:1.5.0:update38::::::

Configuration4	or higher	or less	more than	less than
cpe:2.3:a:sun:jdk:1.5.0:update20::::::
cpe:2.3:a:sun:jdk:1.5.0:update15::::::
cpe:2.3:a:sun:jdk:1.5.0:update18::::::
cpe:2.3:a:sun:jdk:1.5.0:update27::::::
cpe:2.3:a:sun:jdk:1.5.0:update3::::::
cpe:2.3:a:sun:jdk:1.5.0:update21::::::
cpe:2.3:a:sun:jdk:1.5.0:update31::::::
cpe:2.3:a:sun:jdk:1.5.0:update11::::::
cpe:2.3:a:sun:jdk:1.5.0:update26::::::
cpe:2.3:a:sun:jdk:1.5.0:update16::::::
cpe:2.3:a:sun:jdk:1.5.0:update17::::::
cpe:2.3:a:sun:jdk:1.5.0:update9::::::
cpe:2.3:a:sun:jdk:1.5.0:update22::::::
cpe:2.3:a:sun:jdk:1.5.0:update29::::::
cpe:2.3:a:sun:jdk:1.5.0:update28::::::
cpe:2.3:a:sun:jdk:1.5.0:update6::::::
cpe:2.3:a:sun:jdk:1.5.0:update14::::::
cpe:2.3:a:sun:jdk:1.5.0:update23::::::
cpe:2.3:a:sun:jdk:1.5.0:update33::::::
cpe:2.3:a:sun:jdk:1.5.0:update11_b03::::::
cpe:2.3:a:sun:jdk:1.5.0:update1::::::
cpe:2.3:a:sun:jdk:1.5.0:update4::::::
cpe:2.3:a:sun:jdk:1.5.0:update7::::::
cpe:2.3:a:sun:jdk:1.5.0:::::::*
cpe:2.3:a:sun:jdk:1.5.0:update12::::::
cpe:2.3:a:sun:jdk:1.5.0:update5::::::
cpe:2.3:a:sun:jdk:1.5.0:update24::::::
cpe:2.3:a:sun:jdk:1.5.0:update25::::::
cpe:2.3:a:sun:jdk:1.5.0:update7_b03::::::
cpe:2.3:a:sun:jdk:1.5.0:update2::::::
cpe:2.3:a:sun:jdk:1.5.0:update19::::::
cpe:2.3:a:sun:jdk:1.5.0:update13::::::
cpe:2.3:a:sun:jdk:1.5.0:update8::::::
cpe:2.3:a:sun:jdk:1.5.0:update10::::::
cpe:2.3:a:oracle:jdk::update40::::::*		1.5.0
cpe:2.3:a:oracle:jdk:1.5.0:update36::::::
cpe:2.3:a:oracle:jdk:1.5.0:update38::::::

Configuration5	or higher	or less	more than	less than
cpe:2.3:a:oracle:jre:1.7.0:update9::::::
cpe:2.3:a:oracle:jre:1.7.0:update6::::::
cpe:2.3:a:oracle:jre:1.7.0:update3::::::
cpe:2.3:a:oracle:jre:1.7.0:update13::::::
cpe:2.3:a:oracle:jre:1.7.0:update10::::::
cpe:2.3:a:oracle:jre:1.7.0:update11::::::
cpe:2.3:a:oracle:jre:1.7.0:update2::::::
cpe:2.3:a:oracle:jre:1.7.0:update5::::::
cpe:2.3:a:oracle:jre::update15::::::*		1.7.0
cpe:2.3:a:oracle:jre:1.7.0:update4::::::
cpe:2.3:a:oracle:jre:1.7.0:::::::*
cpe:2.3:a:oracle:jre:1.7.0:update7::::::
cpe:2.3:a:oracle:jre:1.7.0:update1::::::