CVE-2013-5888 - Unspecified vulnerability in Oracle Java SE 6u65 and 7u45, when running with GNOME, allows local use

CVE-2013-5888

Summary

Unspecified vulnerability in Oracle Java SE 6u65 and 7u45, when running with GNOME, allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment.

References

Vulnerable Configurations

cpe:2.3:a:oracle:jdk:1.6.0:update65:*:*:*:*:*:*
cpe:2.3:a:oracle:jdk:1.6.0:update65:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.6.0:update65:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.6.0:update65:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.7.0:update45:*:*:*:*:*:*
cpe:2.3:a:oracle:jre:1.7.0:update45:*:*:*:*:*:*

CVSS

Base:	4.6 (as of 13-05-2022 - 14:57)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:P/I:P/A:P

redhat via4

advisories

rhsa
id RHSA-2014:0030
rhsa
id RHSA-2014:0134
rhsa
id RHSA-2014:0135
rhsa
id RHSA-2014:0414

rpms

java-1.7.0-oracle-1:1.7.0.51-1jpp.1.el5_10
java-1.7.0-oracle-1:1.7.0.51-1jpp.1.el6_5
java-1.7.0-oracle-devel-1:1.7.0.51-1jpp.1.el5_10
java-1.7.0-oracle-devel-1:1.7.0.51-1jpp.1.el6_5
java-1.7.0-oracle-javafx-1:1.7.0.51-1jpp.1.el5_10
java-1.7.0-oracle-javafx-1:1.7.0.51-1jpp.1.el6_5
java-1.7.0-oracle-jdbc-1:1.7.0.51-1jpp.1.el5_10
java-1.7.0-oracle-jdbc-1:1.7.0.51-1jpp.1.el6_5
java-1.7.0-oracle-plugin-1:1.7.0.51-1jpp.1.el5_10
java-1.7.0-oracle-plugin-1:1.7.0.51-1jpp.1.el6_5
java-1.7.0-oracle-src-1:1.7.0.51-1jpp.1.el5_10
java-1.7.0-oracle-src-1:1.7.0.51-1jpp.1.el6_5
java-1.7.0-ibm-1:1.7.0.6.1-1jpp.1.el5_10
java-1.7.0-ibm-1:1.7.0.6.1-1jpp.1.el6_5
java-1.7.0-ibm-demo-1:1.7.0.6.1-1jpp.1.el5_10
java-1.7.0-ibm-demo-1:1.7.0.6.1-1jpp.1.el6_5
java-1.7.0-ibm-devel-1:1.7.0.6.1-1jpp.1.el5_10
java-1.7.0-ibm-devel-1:1.7.0.6.1-1jpp.1.el6_5
java-1.7.0-ibm-jdbc-1:1.7.0.6.1-1jpp.1.el5_10
java-1.7.0-ibm-jdbc-1:1.7.0.6.1-1jpp.1.el6_5
java-1.7.0-ibm-plugin-1:1.7.0.6.1-1jpp.1.el5_10
java-1.7.0-ibm-plugin-1:1.7.0.6.1-1jpp.1.el6_5
java-1.7.0-ibm-src-1:1.7.0.6.1-1jpp.1.el5_10
java-1.7.0-ibm-src-1:1.7.0.6.1-1jpp.1.el6_5
java-1.6.0-ibm-1:1.6.0.15.1-1jpp.1.el5_10
java-1.6.0-ibm-1:1.6.0.15.1-1jpp.1.el6_5
java-1.6.0-ibm-accessibility-1:1.6.0.15.1-1jpp.1.el5_10
java-1.6.0-ibm-demo-1:1.6.0.15.1-1jpp.1.el5_10
java-1.6.0-ibm-demo-1:1.6.0.15.1-1jpp.1.el6_5
java-1.6.0-ibm-devel-1:1.6.0.15.1-1jpp.1.el5_10
java-1.6.0-ibm-devel-1:1.6.0.15.1-1jpp.1.el6_5
java-1.6.0-ibm-javacomm-1:1.6.0.15.1-1jpp.1.el5_10
java-1.6.0-ibm-javacomm-1:1.6.0.15.1-1jpp.1.el6_5
java-1.6.0-ibm-jdbc-1:1.6.0.15.1-1jpp.1.el5_10
java-1.6.0-ibm-jdbc-1:1.6.0.15.1-1jpp.1.el6_5
java-1.6.0-ibm-plugin-1:1.6.0.15.1-1jpp.1.el5_10
java-1.6.0-ibm-plugin-1:1.6.0.15.1-1jpp.1.el6_5
java-1.6.0-ibm-src-1:1.6.0.15.1-1jpp.1.el5_10
java-1.6.0-ibm-src-1:1.6.0.15.1-1jpp.1.el6_5
java-1.6.0-sun-1:1.6.0.75-1jpp.1.el6_5
java-1.6.0-sun-1:1.6.0.75-1jpp.3.el5_10
java-1.6.0-sun-demo-1:1.6.0.75-1jpp.1.el6_5
java-1.6.0-sun-demo-1:1.6.0.75-1jpp.3.el5_10
java-1.6.0-sun-devel-1:1.6.0.75-1jpp.1.el6_5
java-1.6.0-sun-devel-1:1.6.0.75-1jpp.3.el5_10
java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.1.el6_5
java-1.6.0-sun-jdbc-1:1.6.0.75-1jpp.3.el5_10
java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.1.el6_5
java-1.6.0-sun-plugin-1:1.6.0.75-1jpp.3.el5_10
java-1.6.0-sun-src-1:1.6.0.75-1jpp.1.el6_5
java-1.6.0-sun-src-1:1.6.0.75-1jpp.3.el5_10
java-1.7.1-ibm-1:1.7.1.1.0-1jpp.2.el7_0
java-1.7.1-ibm-demo-1:1.7.1.1.0-1jpp.2.el7_0
java-1.7.1-ibm-devel-1:1.7.1.1.0-1jpp.2.el7_0
java-1.7.1-ibm-jdbc-1:1.7.1.1.0-1jpp.2.el7_0
java-1.7.1-ibm-plugin-1:1.7.1.1.0-1jpp.2.el7_0
java-1.7.1-ibm-src-1:1.7.1.1.0-1jpp.2.el7_0
java-1.6.0-ibm-1:1.6.0.16.0-1jpp.1.el5
java-1.6.0-ibm-1:1.6.0.16.0-1jpp.1.el6
java-1.6.0-ibm-devel-1:1.6.0.16.0-1jpp.1.el5
java-1.6.0-ibm-devel-1:1.6.0.16.0-1jpp.1.el6

refmap via4

bid	64758 64925
confirm	http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04166777
hp	HPSBUX02972 HPSBUX02973 SSRT101454 SSRT101455
osvdb	102023
sectrack	1029608
secunia	56485 56535
suse	SUSE-SU-2014:0246 SUSE-SU-2014:0266 SUSE-SU-2014:0451
xf	oracle-cpujan2014-cve20135888(90354)

Last major update

13-05-2022 - 14:57

Published

15-01-2014 - 16:11

Last modified

13-05-2022 - 14:57