製品・ソフトウェアに関する情報

Vulnerability Search

ベンダー検索

Product/Service Search

JVN Vulnerability Search Top

->

JVN脆弱性詳細

IBM Java SDK における脆弱性

Title	IBM Java SDK における脆弱性
Summary	IBM Java SDK には、不特定の影響およびクラスライブラリに関する攻撃を受ける脆弱性が存在します。
Possible impacts	不特定の影響およびクラスライブラリに関する攻撃を受ける可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	April 9, 2013, midnight
Registration Date	Jan. 23, 2014, 3:36 p.m.
Last Update	Jan. 23, 2014, 3:36 p.m.

CVSS2.0 : 危険
Score	10
Vector	AV:N/AC:L/Au:N/C:C/I:C/A:C

Affected System

IBM

Java SDK 1.4.2 SR13-FP16 未満の 1.4.2

Java SDK 5.0 SR16-FP1 未満の 5.0

Java SDK 6 SR13-FP1 未満の 6

Java SDK 7 SR4-FP1 未満の 7

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2013-0485	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0485
National Vulnerability Database (NVD)
2	CVE-2013-0485	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0485

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-noinfo	https://www.ipa.go.jp/security/vuln/CWE.html#CWEnoinfo

ベンダー情報

No	Name	URL
developerWorks
1	Java 1.4.2 Service Refresh 13 FixPack 11	http://www.ibm.com/developerworks/java/jdk/aix/142_64/fixes.html#SR13FP11
2	Java 5.0 Service Refresh 16 Fix Pack 1	http://www.ibm.com/developerworks/java/jdk/aix/j532/fixes.html#SR16FP1
3	Java 6.0 Service Refresh 13 Fix Pack 1	http://www.ibm.com/developerworks/java/jdk/aix/j664/Java6_64.fixes.html#SR13FP1
4	Java 7.0 Service Refresh 4 Fix Pack 1	http://www.ibm.com/developerworks/java/jdk/aix/j732/Java7.fixes.html#SR4FP1
Red Hat Bugzilla
5	Bug 950072	https://bugzilla.redhat.com/show_bug.cgi?id=950072

Change Log

No	Changed Details	Date of change
0	[2014年01月23日] 掲載	Feb. 17, 2018, 10:37 a.m.

NVD Vulnerability Information

CVE-2013-0485

Summary	Unspecified vulnerability in IBM Java SDK 7 before SR4-FP1, 6 before SR13-FP1, 5.0 before SR16-FP1, and 1.4.2 before SR13-FP16 has unknown impact and attack vectors related to Class Libraries.
Publication Date	Jan. 22, 2014, 3:55 a.m.
Registration Date	Jan. 26, 2021, 3:33 p.m.
Last Update	Nov. 21, 2024, 10:47 a.m.

Affected software configurations

Configuration1		or higher	or less	more than	less than
cpe:2.3:a:ibm:java:7.0.0.0:::::::*
cpe:2.3:a:ibm:java:1.4.2:::::::*
cpe:2.3:a:ibm:java:5.0.0.0:::::::*
cpe:2.3:a:ibm:java:6.0.0.0:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00020.html
2	http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00020.html
3	http://www.ibm.com/developerworks/java/jdk/aix/142_64/fixes.html#SR13FP16
4	http://www.ibm.com/developerworks/java/jdk/aix/142_64/fixes.html#SR13FP16
5	http://www.ibm.com/developerworks/java/jdk/aix/j532/fixes.html#SR16FP1
6	http://www.ibm.com/developerworks/java/jdk/aix/j532/fixes.html#SR16FP1
7	http://www.ibm.com/developerworks/java/jdk/aix/j664/Java6_64.fixes.html#SR13FP1
8	http://www.ibm.com/developerworks/java/jdk/aix/j664/Java6_64.fixes.html#SR13FP1
9	http://www.ibm.com/developerworks/java/jdk/aix/j732/Java7.fixes.html#SR4FP1
10	http://www.ibm.com/developerworks/java/jdk/aix/j732/Java7.fixes.html#SR4FP1
11	https://bugzilla.redhat.com/show_bug.cgi?id=950072
12	https://bugzilla.redhat.com/show_bug.cgi?id=950072

Common Vulnerabilities List