Details of VAR-201306-0256

ID

VAR-201306-0256

CVE

CVE-2013-2442

TITLE

Oracle Java SE JRE Unknown security vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-201306-298

DESCRIPTION

Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier and 6 Update 45 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Deployment, a different vulnerability than CVE-2013-2466 and CVE-2013-2468. The vulnerability can be exploited over multiple protocols. This issue affects the 'Deployment' sub-component. This vulnerability affects the following supported versions: 7 Update 21 , 6 Update 45. In a typical operating environment, these are of low security risk as the runtime is not used on untrusted applets. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ===================================================================== Red Hat Security Advisory Synopsis: Critical: java-1.7.0-oracle security update Advisory ID: RHSA-2013:0963-01 Product: Red Hat Enterprise Linux Supplementary Advisory URL: https://rhn.redhat.com/errata/RHSA-2013-0963.html Issue date: 2013-06-20 CVE Names: CVE-2013-1500 CVE-2013-1571 CVE-2013-2400 CVE-2013-2407 CVE-2013-2412 CVE-2013-2437 CVE-2013-2442 CVE-2013-2443 CVE-2013-2444 CVE-2013-2445 CVE-2013-2446 CVE-2013-2447 CVE-2013-2448 CVE-2013-2449 CVE-2013-2450 CVE-2013-2451 CVE-2013-2452 CVE-2013-2453 CVE-2013-2454 CVE-2013-2455 CVE-2013-2456 CVE-2013-2457 CVE-2013-2458 CVE-2013-2459 CVE-2013-2460 CVE-2013-2461 CVE-2013-2462 CVE-2013-2463 CVE-2013-2464 CVE-2013-2465 CVE-2013-2466 CVE-2013-2468 CVE-2013-2469 CVE-2013-2470 CVE-2013-2471 CVE-2013-2472 CVE-2013-2473 CVE-2013-3744 ===================================================================== 1. Summary: Updated java-1.7.0-oracle packages that fix several security issues are now available for Red Hat Enterprise Linux 5 and 6 Supplementary. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux HPC Node Supplementary (v. 6) - x86_64 Red Hat Enterprise Linux Server Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64 3. Further information about these flaws can be found on the Oracle Java SE Critical Patch Update Advisory page, listed in the References section. (CVE-2013-1500, CVE-2013-1571, CVE-2013-2400, CVE-2013-2407, CVE-2013-2412, CVE-2013-2437, CVE-2013-2442, CVE-2013-2443, CVE-2013-2444, CVE-2013-2445, CVE-2013-2446, CVE-2013-2447, CVE-2013-2448, CVE-2013-2449, CVE-2013-2450, CVE-2013-2451, CVE-2013-2452, CVE-2013-2453, CVE-2013-2454, CVE-2013-2455, CVE-2013-2456, CVE-2013-2457, CVE-2013-2458, CVE-2013-2459, CVE-2013-2460, CVE-2013-2461, CVE-2013-2462, CVE-2013-2463, CVE-2013-2464, CVE-2013-2465, CVE-2013-2466, CVE-2013-2468, CVE-2013-2469, CVE-2013-2470, CVE-2013-2471, CVE-2013-2472, CVE-2013-2473, CVE-2013-3744) Red Hat would like to thank Tim Brown for reporting CVE-2013-1500, and US-CERT for reporting CVE-2013-1571. US-CERT acknowledges Oracle as the original reporter of CVE-2013-1571. All users of java-1.7.0-oracle are advised to upgrade to these updated packages, which provide Oracle Java 7 Update 25 and resolve these issues. All running instances of Oracle Java must be restarted for the update to take effect. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 5. Bugs fixed (http://bugzilla.redhat.com/): 973474 - CVE-2013-1571 OpenJDK: Frame injection in generated HTML (Javadoc, 8012375) 975099 - CVE-2013-2470 OpenJDK: ImagingLib byte lookup processing (2D, 8011243) 975102 - CVE-2013-2471 OpenJDK: Incorrect IntegerComponentRaster size checks (2D, 8011248) 975107 - CVE-2013-2472 OpenJDK: Incorrect ShortBandedRaster size checks (2D, 8011253) 975110 - CVE-2013-2473 OpenJDK: Incorrect ByteBandedRaster size checks (2D, 8011257) 975115 - CVE-2013-2463 OpenJDK: Incorrect image attribute verification (2D, 8012438) 975118 - CVE-2013-2465 OpenJDK: Incorrect image channel verification (2D, 8012597) 975120 - CVE-2013-2469 OpenJDK: Incorrect image layout verification (2D, 8012601) 975121 - CVE-2013-2459 OpenJDK: Various AWT integer overflow checks (AWT, 8009071) 975122 - CVE-2013-2460 OpenJDK: tracing insufficient access checks (Serviceability, 8010209) 975124 - CVE-2013-2445 OpenJDK: Better handling of memory allocation errors (Hotspot, 7158805) 975125 - CVE-2013-2448 OpenJDK: Better access restrictions (Sound, 8006328) 975126 - CVE-2013-2461 OpenJDK: Missing check for valid DOMCanonicalizationMethod canonicalization algorithm (Libraries, 8014281) 975127 - CVE-2013-2407 OpenJDK: Integrate Apache Santuario, rework class loader (Libraries, 6741606, 8008744) 975129 - CVE-2013-2454 OpenJDK: SerialJavaObject package restriction (JDBC, 8009554) 975130 - CVE-2013-2458 OpenJDK: Method handles (Libraries, 8009424) 975131 - CVE-2013-2444 OpenJDK: Resource denial of service (AWT, 8001038) 975132 - CVE-2013-2446 OpenJDK: output stream access restrictions (CORBA, 8000642) 975133 - CVE-2013-2457 OpenJDK: Proper class checking (JMX, 8008120) 975134 - CVE-2013-2453 OpenJDK: MBeanServer Introspector package access (JMX, 8008124) 975137 - CVE-2013-2443 OpenJDK: AccessControlContext check order issue (Libraries, 8001330) 975138 - CVE-2013-2452 OpenJDK: Unique VMIDs (Libraries, 8001033) 975139 - CVE-2013-2455 OpenJDK: getEnclosing* checks (Libraries, 8007812) 975140 - CVE-2013-2447 OpenJDK: Prevent revealing the local address (Networking, 8001318) 975141 - CVE-2013-2450 OpenJDK: ObjectStreamClass circular reference denial of service (Serialization, 8000638) 975142 - CVE-2013-2456 OpenJDK: ObjectOutputStream access checks (Serialization, 8008132) 975144 - CVE-2013-2412 OpenJDK: JConsole SSL support (Serviceability, 8003703) 975145 - CVE-2013-2449 OpenJDK: GnomeFileTypeDetector path access check (Libraries, 8004288) 975146 - CVE-2013-2451 OpenJDK: exclusive port binding (Networking, 7170730) 975148 - CVE-2013-1500 OpenJDK: Insecure shared memory permissions (2D, 8001034) 975757 - CVE-2013-2464 Oracle JDK: unspecified vulnerability fixed in 7u25 (2D) 975761 - CVE-2013-2468 Oracle JDK: unspecified vulnerability fixed in 7u25 (Deployment) 975764 - CVE-2013-2466 Oracle JDK: unspecified vulnerability fixed in 7u25 (Deployment) 975769 - CVE-2013-2462 Oracle JDK: unspecified vulnerability fixed in 7u25 (Deployment) 975770 - CVE-2013-2442 Oracle JDK: unspecified vulnerability fixed in 7u25 (Deployment) 975773 - CVE-2013-2437 Oracle JDK: unspecified vulnerability fixed in 7u25 (Deployment) 975774 - CVE-2013-2400 Oracle JDK: unspecified vulnerability fixed in 7u25 (Deployment) 975775 - CVE-2013-3744 Oracle JDK: unspecified vulnerability fixed in 7u25 (Deployment) 6. Package List: Red Hat Enterprise Linux Desktop Supplementary (v. 5): i386: java-1.7.0-oracle-1.7.0.25-1jpp.1.el5_9.i386.rpm java-1.7.0-oracle-devel-1.7.0.25-1jpp.1.el5_9.i386.rpm java-1.7.0-oracle-javafx-1.7.0.25-1jpp.1.el5_9.i386.rpm java-1.7.0-oracle-jdbc-1.7.0.25-1jpp.1.el5_9.i386.rpm java-1.7.0-oracle-plugin-1.7.0.25-1jpp.1.el5_9.i386.rpm java-1.7.0-oracle-src-1.7.0.25-1jpp.1.el5_9.i386.rpm x86_64: java-1.7.0-oracle-1.7.0.25-1jpp.1.el5_9.x86_64.rpm java-1.7.0-oracle-devel-1.7.0.25-1jpp.1.el5_9.x86_64.rpm java-1.7.0-oracle-javafx-1.7.0.25-1jpp.1.el5_9.x86_64.rpm java-1.7.0-oracle-jdbc-1.7.0.25-1jpp.1.el5_9.x86_64.rpm java-1.7.0-oracle-plugin-1.7.0.25-1jpp.1.el5_9.x86_64.rpm java-1.7.0-oracle-src-1.7.0.25-1jpp.1.el5_9.x86_64.rpm Red Hat Enterprise Linux Server Supplementary (v. 5): i386: java-1.7.0-oracle-1.7.0.25-1jpp.1.el5_9.i386.rpm java-1.7.0-oracle-devel-1.7.0.25-1jpp.1.el5_9.i386.rpm java-1.7.0-oracle-javafx-1.7.0.25-1jpp.1.el5_9.i386.rpm java-1.7.0-oracle-jdbc-1.7.0.25-1jpp.1.el5_9.i386.rpm java-1.7.0-oracle-plugin-1.7.0.25-1jpp.1.el5_9.i386.rpm java-1.7.0-oracle-src-1.7.0.25-1jpp.1.el5_9.i386.rpm x86_64: java-1.7.0-oracle-1.7.0.25-1jpp.1.el5_9.x86_64.rpm java-1.7.0-oracle-devel-1.7.0.25-1jpp.1.el5_9.x86_64.rpm java-1.7.0-oracle-javafx-1.7.0.25-1jpp.1.el5_9.x86_64.rpm java-1.7.0-oracle-jdbc-1.7.0.25-1jpp.1.el5_9.x86_64.rpm java-1.7.0-oracle-plugin-1.7.0.25-1jpp.1.el5_9.x86_64.rpm java-1.7.0-oracle-src-1.7.0.25-1jpp.1.el5_9.x86_64.rpm Red Hat Enterprise Linux Desktop Supplementary (v. 6): i386: java-1.7.0-oracle-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-devel-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-javafx-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-jdbc-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-plugin-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-src-1.7.0.25-1jpp.1.el6_4.i686.rpm x86_64: java-1.7.0-oracle-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-devel-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-javafx-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-jdbc-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-plugin-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-src-1.7.0.25-1jpp.1.el6_4.x86_64.rpm Red Hat Enterprise Linux HPC Node Supplementary (v. 6): x86_64: java-1.7.0-oracle-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-devel-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-javafx-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-src-1.7.0.25-1jpp.1.el6_4.x86_64.rpm Red Hat Enterprise Linux Server Supplementary (v. 6): i386: java-1.7.0-oracle-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-devel-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-javafx-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-jdbc-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-plugin-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-src-1.7.0.25-1jpp.1.el6_4.i686.rpm x86_64: java-1.7.0-oracle-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-devel-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-javafx-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-jdbc-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-plugin-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-src-1.7.0.25-1jpp.1.el6_4.x86_64.rpm Red Hat Enterprise Linux Workstation Supplementary (v. 6): i386: java-1.7.0-oracle-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-devel-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-javafx-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-jdbc-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-plugin-1.7.0.25-1jpp.1.el6_4.i686.rpm java-1.7.0-oracle-src-1.7.0.25-1jpp.1.el6_4.i686.rpm x86_64: java-1.7.0-oracle-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-devel-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-javafx-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-jdbc-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-plugin-1.7.0.25-1jpp.1.el6_4.x86_64.rpm java-1.7.0-oracle-src-1.7.0.25-1jpp.1.el6_4.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://www.redhat.com/security/data/cve/CVE-2013-1500.html https://www.redhat.com/security/data/cve/CVE-2013-1571.html https://www.redhat.com/security/data/cve/CVE-2013-2400.html https://www.redhat.com/security/data/cve/CVE-2013-2407.html https://www.redhat.com/security/data/cve/CVE-2013-2412.html https://www.redhat.com/security/data/cve/CVE-2013-2437.html https://www.redhat.com/security/data/cve/CVE-2013-2442.html https://www.redhat.com/security/data/cve/CVE-2013-2443.html https://www.redhat.com/security/data/cve/CVE-2013-2444.html https://www.redhat.com/security/data/cve/CVE-2013-2445.html https://www.redhat.com/security/data/cve/CVE-2013-2446.html https://www.redhat.com/security/data/cve/CVE-2013-2447.html https://www.redhat.com/security/data/cve/CVE-2013-2448.html https://www.redhat.com/security/data/cve/CVE-2013-2449.html https://www.redhat.com/security/data/cve/CVE-2013-2450.html https://www.redhat.com/security/data/cve/CVE-2013-2451.html https://www.redhat.com/security/data/cve/CVE-2013-2452.html https://www.redhat.com/security/data/cve/CVE-2013-2453.html https://www.redhat.com/security/data/cve/CVE-2013-2454.html https://www.redhat.com/security/data/cve/CVE-2013-2455.html https://www.redhat.com/security/data/cve/CVE-2013-2456.html https://www.redhat.com/security/data/cve/CVE-2013-2457.html https://www.redhat.com/security/data/cve/CVE-2013-2458.html https://www.redhat.com/security/data/cve/CVE-2013-2459.html https://www.redhat.com/security/data/cve/CVE-2013-2460.html https://www.redhat.com/security/data/cve/CVE-2013-2461.html https://www.redhat.com/security/data/cve/CVE-2013-2462.html https://www.redhat.com/security/data/cve/CVE-2013-2463.html https://www.redhat.com/security/data/cve/CVE-2013-2464.html https://www.redhat.com/security/data/cve/CVE-2013-2465.html https://www.redhat.com/security/data/cve/CVE-2013-2466.html https://www.redhat.com/security/data/cve/CVE-2013-2468.html https://www.redhat.com/security/data/cve/CVE-2013-2469.html https://www.redhat.com/security/data/cve/CVE-2013-2470.html https://www.redhat.com/security/data/cve/CVE-2013-2471.html https://www.redhat.com/security/data/cve/CVE-2013-2472.html https://www.redhat.com/security/data/cve/CVE-2013-2473.html https://www.redhat.com/security/data/cve/CVE-2013-3744.html https://access.redhat.com/security/updates/classification/#critical http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html 8. Contact: The Red Hat security contact is <secalert@redhat.com>. More contact details at https://access.redhat.com/security/team/contact/ Copyright 2013 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFRwxfSXlSAg2UNWIIRAtbuAJ9H6PHJcgqEan9vQtHjkUXl58kRpwCeI9sA Jow4P90PK0jpYNzHe9siPmU= =GzWl -----END PGP SIGNATURE----- -- RHSA-announce mailing list RHSA-announce@redhat.com https://www.redhat.com/mailman/listinfo/rhsa-announce . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Note: the current version of the following document is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/ docDisplay?docId=emr_na-c03874547 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c03874547 Version: 1 HPSBUX02908 rev.1 - HP-UX Running Java6, Remote Unauthorized Access, Disclosure of Information, and Other Vulnerabilities NOTICE: The information in this Security Bulletin should be acted upon as soon as possible. Release Date: 2013-07-31 Last Updated: 2013-07-31 Potential Security Impact: Remote unauthorized access, disclosure of information, and other vulnerabilities Source: Hewlett-Packard Company, HP Software Security Response Team VULNERABILITY SUMMARY Potential security vulnerabilities have been identified in the Java Runtime Environment (JRE) and the Java Developer Kit (JDK) running on HP-UX. These vulnerabilities could allow remote unauthorized access, disclosure of information, and other exploits. HP-UX B.11.11, B.11.23, and B.11.31 running HP JDK and JRE v6.0.19 and earlier. BACKGROUND CVSS 2.0 Base Metrics =========================================================== Reference Base Vector Base Score CVE-2013-1500 (AV:L/AC:L/Au:N/C:P/I:P/A:N) 3.6 CVE-2013-1571 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3 CVE-2013-2407 (AV:N/AC:L/Au:N/C:P/I:N/A:P) 6.4 CVE-2013-2412 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2433 (AV:N/AC:M/Au:N/C:N/I:P/A:N) 4.3 CVE-2013-2437 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2442 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2013-2444 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2013-2445 (AV:N/AC:L/Au:N/C:N/I:N/A:C) 7.8 CVE-2013-2446 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2447 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2448 (AV:N/AC:H/Au:N/C:C/I:C/A:C) 7.6 CVE-2013-2450 (AV:N/AC:L/Au:N/C:N/I:N/A:P) 5.0 CVE-2013-2451 (AV:L/AC:H/Au:N/C:P/I:P/A:P) 3.7 CVE-2013-2452 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2453 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2013-2454 (AV:N/AC:M/Au:N/C:P/I:P/A:N) 5.8 CVE-2013-2455 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2456 (AV:N/AC:L/Au:N/C:P/I:N/A:N) 5.0 CVE-2013-2457 (AV:N/AC:L/Au:N/C:N/I:P/A:N) 5.0 CVE-2013-2459 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2461 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 CVE-2013-2463 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2464 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2465 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2466 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2468 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2469 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2470 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2471 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2472 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-2473 (AV:N/AC:L/Au:N/C:C/I:C/A:C) 10.0 CVE-2013-3743 (AV:N/AC:M/Au:N/C:C/I:C/A:C) 9.3 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002 RESOLUTION HP has provided the following Java version upgrade to resolve these vulnerabilities. The upgrade is available from the following location http://www.hp.com/java OS Version Release Version HP-UX B.11.11, B.11.23, B.11.31 JDK and JRE v6.0.20 or subsequent MANUAL ACTIONS: Yes - Update For Java v6.0 update to Java v6.0.20 or subsequent PRODUCT SPECIFIC INFORMATION HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see https://www.hp.com/go/swa The following text is for use by the HP-UX Software Assistant. AFFECTED VERSIONS HP-UX B.11.11 HP-UX B.11.23 =========== Jdk60.JDK60-COM Jdk60.JDK60-PA20 Jdk60.JDK60-PA20W Jre60.JRE60-COM Jre60.JRE60-COM-DOC Jre60.JRE60-PA20 Jre60.JRE60-PA20-HS Jre60.JRE60-PA20W Jre60.JRE60-PA20W-HS Jdk60.JDK60-IPF32 Jdk60.JDK60-IPF64 Jre60.JRE60-COM Jre60.JRE60-IPF32 Jre60.JRE60-IPF32-HS Jre60.JRE60-IPF64 Jre60.JRE60-IPF64-HS action: install revision 1.6.0.20.00 or subsequent HP-UX B.11.23 HP-UX B.11.31 =========== Jdk60.JDK60-COM Jdk60.JDK60-IPF32 Jdk60.JDK60-IPF64 Jre60.JRE60-IPF32 Jre60.JRE60-IPF32-HS Jre60.JRE60-IPF64 Jre60.JRE60-IPF64-HS Jre60.JRE60-COM Jre60.JRE60-IPF32 Jre60.JRE60-IPF32-HS Jre60.JRE60-IPF64 Jre60.JRE60-IPF64-HS action: install revision 1.6.0.20.00 or subsequent END AFFECTED VERSIONS HISTORY Version:1 (rev.1) - 31 July 2013 Initial release Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy. Support: For issues about implementing the recommendations of this Security Bulletin, contact normal HP Services support channel. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com. Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com Subscribe: To initiate a subscription to receive future HP Security Bulletin alerts via Email: http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins Security Bulletin Archive: A list of recently released Security Bulletins is available here: https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secBullArchive/ Software Product Category: The Software Product Category is represented in the title by the two characters following HPSB. 3C = 3COM 3P = 3rd Party Software GN = HP General Software HF = HP Hardware and Firmware MP = MPE/iX MU = Multi-Platform Software NS = NonStop Servers OV = OpenVMS PI = Printing and Imaging PV = ProCurve ST = Storage Software TU = Tru64 UNIX UX = HP-UX Copyright 2013 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners

Trust: 1.8

sources: NVD: CVE-2013-2442 // BID: 60643 // PACKETSTORM: 123734 // PACKETSTORM: 126195 // PACKETSTORM: 123735 // PACKETSTORM: 122109 // PACKETSTORM: 122653 // PACKETSTORM: 122651 // PACKETSTORM: 122404

AFFECTED PRODUCTS

vendor:	oracle	model:	jre	scope:	eq	version:	1.7.0	Trust: 1.6
vendor:	oracle	model:	jdk	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jre	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jdk	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	oracle	model:	jre	scope:	lte	version:	1.7.0	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	lte	version:	1.7.0	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	eq	version:	1.7.0	Trust: 1.0
vendor:	oracle	model:	jre	scope:	eq	version:	1.6.0	Trust: 1.0
vendor:	oracle	model:	jre	scope:	lte	version:	1.6.0	Trust: 1.0
vendor:	oracle	model:	jdk	scope:	lte	version:	1.6.0	Trust: 1.0
vendor:	sun	model:	jre 17	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 13	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 12	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 10	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 07	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 06	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 05	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre 04	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jre	scope:	eq	version:	1.7	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 21	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 19	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 18	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 15	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 14	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 11	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 03	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 02	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 01	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 17	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk 14	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk 13	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk 11	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk 10	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk 07	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk 06	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk 05	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk 04	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk	scope:	eq	version:	1.6	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 21	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 20	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 19	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 18	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 15	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 03	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jdk 1.6.0 02	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 9	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 8	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 17	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 13	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 11	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 10	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 43	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 39	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 38	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 45	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 7	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 4	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.7.0 2	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 35	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 32	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 30	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 28	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 27	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 26	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 25	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 24	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 23	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jre 1.6.0 22	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 9	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 8	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 21	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 13	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 12	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 11	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 10	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 45	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 43	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 39	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 37	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk	scope:	eq	version:	1.7	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 7	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 4	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.7.0 2	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 38	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 35	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 32	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 30	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 28	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 27	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 26	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 25	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 24	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 23	scope:	-	version:	-	Trust: 0.9
vendor:	oracle	model:	jdk 1.6.0 22	scope:	-	version:	-	Trust: 0.9
vendor:	sun	model:	jre 1.6.0 20	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jre 1.6.0 2	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 1.6.0 01	scope:	-	version:	-	Trust: 0.6
vendor:	sun	model:	jdk 01-b06	scope:	eq	version:	1.6	Trust: 0.6
vendor:	oracle	model:	jre 1.7.0 12	scope:	-	version:	-	Trust: 0.6
vendor:	oracle	model:	jre 1.7.0 21	scope:	-	version:	-	Trust: 0.6
vendor:	oracle	model:	jdk 1.7.0 17	scope:	-	version:	-	Trust: 0.6
vendor:	xerox	model:	freeflow print server 93.e0.21c	scope:	-	version:	-	Trust: 0.3
vendor:	xerox	model:	freeflow print server 91.d2.32	scope:	-	version:	-	Trust: 0.3
vendor:	xerox	model:	freeflow print server 82.d1.44	scope:	-	version:	-	Trust: 0.3
vendor:	xerox	model:	freeflow print server 81.d0.73	scope:	-	version:	-	Trust: 0.3
vendor:	xerox	model:	freeflow print server 73.d2.33	scope:	-	version:	-	Trust: 0.3
vendor:	xerox	model:	freeflow print server 73.c5.11	scope:	-	version:	-	Trust: 0.3
vendor:	suse	model:	linux enterprise software development kit sp3	scope:	eq	version:	11	Trust: 0.3
vendor:	suse	model:	linux enterprise server sp3 for vmware	scope:	eq	version:	11	Trust: 0.3
vendor:	suse	model:	linux enterprise server sp3	scope:	eq	version:	11	Trust: 0.3
vendor:	suse	model:	linux enterprise server sp4	scope:	eq	version:	10	Trust: 0.3
vendor:	suse	model:	linux enterprise server sp3 ltss	scope:	eq	version:	10	Trust: 0.3
vendor:	suse	model:	linux enterprise java sp3	scope:	eq	version:	11	Trust: 0.3
vendor:	suse	model:	linux enterprise java sp4	scope:	eq	version:	10	Trust: 0.3
vendor:	sun	model:	jdk 1.6.0 01-b06	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	jdk 01	scope:	eq	version:	1.6	Trust: 0.3
vendor:	schneider electric	model:	trio tview software	scope:	eq	version:	3.27.0	Trust: 0.3
vendor:	redhat	model:	network satellite (for rhel	scope:	eq	version:	6)5.5	Trust: 0.3
vendor:	redhat	model:	network satellite (for rhel	scope:	eq	version:	5)5.5	Trust: 0.3
vendor:	redhat	model:	enterprise linux workstation supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux workstation	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux supplementary server	scope:	eq	version:	5	Trust: 0.3
vendor:	redhat	model:	enterprise linux server supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux server eus 6.5.z	scope:	-	version:	-	Trust: 0.3
vendor:	redhat	model:	enterprise linux server aus	scope:	eq	version:	6.5	Trust: 0.3
vendor:	redhat	model:	enterprise linux server	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux hpc node supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux hpc node	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop supplementary	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop supplementary client	scope:	eq	version:	5	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop	scope:	eq	version:	6	Trust: 0.3
vendor:	redhat	model:	enterprise linux desktop client	scope:	eq	version:	5	Trust: 0.3
vendor:	redhat	model:	enterprise linux server	scope:	eq	version:	5	Trust: 0.3
vendor:	ibm	model:	websphere real time sr4-fp2	scope:	eq	version:	3	Trust: 0.3
vendor:	ibm	model:	websphere real time	scope:	eq	version:	2.0	Trust: 0.3
vendor:	ibm	model:	websphere operational decision management	scope:	eq	version:	7.5.0.0	Trust: 0.3
vendor:	ibm	model:	websphere message broker	scope:	eq	version:	6.1	Trust: 0.3
vendor:	ibm	model:	websphere ilog jrules	scope:	eq	version:	7.1	Trust: 0.3
vendor:	ibm	model:	virtualization engine ts7700	scope:	eq	version:	0	Trust: 0.3
vendor:	ibm	model:	tivoli system automation for integrated operations management	scope:	eq	version:	2.1.1	Trust: 0.3
vendor:	ibm	model:	tivoli system automation for integrated operations management	scope:	eq	version:	2.1	Trust: 0.3
vendor:	ibm	model:	tivoli provisioning manager	scope:	eq	version:	7.1.1	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.3	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring fix pack	scope:	eq	version:	6.2.33	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.2.32	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.2.3	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.2.29	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.2.2	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring fix pack	scope:	eq	version:	6.2.104	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.2.1	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring fix pack	scope:	eq	version:	6.203	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.2	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.3.0.1	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring	scope:	eq	version:	6.2.3.1	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring fp6	scope:	eq	version:	6.2.2	Trust: 0.3
vendor:	ibm	model:	tivoli monitoring fixpack	scope:	eq	version:	6.2.24	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.3.0.1	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.3.0	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.2.0.2	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.2.0.1	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.2.0	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.1.0.2	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.1.0.1	Trust: 0.3
vendor:	ibm	model:	tivoli composite application manager for transactions	scope:	eq	version:	7.1.0	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2.2	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2.13	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2.12	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2.11	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2.1	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2.1.5	Trust: 0.3
vendor:	ibm	model:	tivoli application dependency discovery manager	scope:	eq	version:	7.2.1.4	Trust: 0.3
vendor:	ibm	model:	smart analytics system	scope:	eq	version:	56009.7	Trust: 0.3
vendor:	ibm	model:	service delivery manager	scope:	eq	version:	7.2.4	Trust: 0.3
vendor:	ibm	model:	service delivery manager	scope:	eq	version:	7.2.2	Trust: 0.3
vendor:	ibm	model:	service delivery manager	scope:	eq	version:	7.2.1	Trust: 0.3
vendor:	ibm	model:	rational host on-demand	scope:	eq	version:	11.0	Trust: 0.3
vendor:	ibm	model:	rational host on-demand	scope:	eq	version:	11.0.8	Trust: 0.3
vendor:	ibm	model:	os/400 v5r4m0	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	operational decision manager	scope:	eq	version:	8.5	Trust: 0.3
vendor:	ibm	model:	operational decision manager	scope:	eq	version:	8.0	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	7.2.1	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	7.1.1	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.8	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.7	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.6	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.5	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.4	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.3	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.2	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2.1	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	7.5	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	7.2	Trust: 0.3
vendor:	ibm	model:	maximo asset management	scope:	eq	version:	6.2	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.3	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.2	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.1	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	9.0	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.2.3	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.2.2	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.2.1	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.1.5	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.1.4	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.1.3	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.1.2	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5.0.1	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.5	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2.6	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2.5	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2.4	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2.3	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2.2	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0.2.1	Trust: 0.3
vendor:	ibm	model:	lotus notes	scope:	eq	version:	8.0	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5.4	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5.3	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5.2	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5.1	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0.2	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0.1	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	9.0	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5.1.1	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.5.0.1	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0.2.4	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0.2.3	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0.2.2	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0.2.1	Trust: 0.3
vendor:	ibm	model:	lotus domino	scope:	eq	version:	8.0	Trust: 0.3
vendor:	ibm	model:	java se	scope:	eq	version:	1.4.2	Trust: 0.3
vendor:	ibm	model:	java se	scope:	eq	version:	7	Trust: 0.3
vendor:	ibm	model:	java se	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	java se	scope:	eq	version:	5.0	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	eq	version:	1.4.2	Trust: 0.3
vendor:	ibm	model:	java sdk sr4-fp2	scope:	eq	version:	7	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	eq	version:	7	Trust: 0.3
vendor:	ibm	model:	java sdk sr5-fp2	scope:	eq	version:	6.0.1	Trust: 0.3
vendor:	ibm	model:	java sdk sr13-fp2	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	eq	version:	6	Trust: 0.3
vendor:	ibm	model:	java sdk sr16-fp2	scope:	eq	version:	5.0	Trust: 0.3
vendor:	ibm	model:	java sdk	scope:	eq	version:	5	Trust: 0.3
vendor:	ibm	model:	java sdk sr13-fp17	scope:	eq	version:	1.4.2	Trust: 0.3
vendor:	ibm	model:	integration bus	scope:	eq	version:	9.0.0.0	Trust: 0.3
vendor:	ibm	model:	i v5r4	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	i	scope:	eq	version:	7.1	Trust: 0.3
vendor:	ibm	model:	i	scope:	eq	version:	6.1	Trust: 0.3
vendor:	ibm	model:	flex system manager types	scope:	eq	version:	87341.3	Trust: 0.3
vendor:	ibm	model:	flex system manager types	scope:	eq	version:	87341.1.0	Trust: 0.3
vendor:	ibm	model:	flex system manager types	scope:	eq	version:	87311.3	Trust: 0.3
vendor:	ibm	model:	flex system manager types	scope:	eq	version:	87311.1.0	Trust: 0.3
vendor:	ibm	model:	flex system manager types	scope:	eq	version:	79551.3	Trust: 0.3
vendor:	ibm	model:	flex system manager types	scope:	eq	version:	79551.1.0	Trust: 0.3
vendor:	ibm	model:	cloudburst	scope:	eq	version:	2.1.1	Trust: 0.3
vendor:	ibm	model:	cloudburst	scope:	eq	version:	2.1	Trust: 0.3
vendor:	ibm	model:	cloudburst	scope:	eq	version:	1.2	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.31	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.11	scope:	-	version:	-	Trust: 0.3
vendor:	hitachi	model:	ucosminexus service platform	scope:	eq	version:	8	Trust: 0.3
vendor:	hitachi	model:	ucosminexus service architect	scope:	eq	version:	8	Trust: 0.3
vendor:	hitachi	model:	ucosminexus operator	scope:	eq	version:	8	Trust: 0.3
vendor:	hitachi	model:	ucosminexus developer	scope:	eq	version:	09-00	Trust: 0.3
vendor:	hitachi	model:	ucosminexus client	scope:	eq	version:	8	Trust: 0.3
vendor:	hitachi	model:	ucosminexus application server	scope:	eq	version:	09-00	Trust: 0.3
vendor:	hitachi	model:	cosminexus studio	scope:	eq	version:	5	Trust: 0.3
vendor:	hitachi	model:	cosminexus studio	scope:	eq	version:	4.0	Trust: 0.3
vendor:	hitachi	model:	cosminexus server web edition	scope:	eq	version:	-4	Trust: 0.3
vendor:	hitachi	model:	cosminexus server standard edition	scope:	eq	version:	-4	Trust: 0.3
vendor:	hitachi	model:	cosminexus developer	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hitachi	model:	cosminexus developer	scope:	eq	version:	5	Trust: 0.3
vendor:	hitachi	model:	cosminexus client	scope:	eq	version:	6	Trust: 0.3
vendor:	hitachi	model:	cosminexus application server	scope:	eq	version:	6.0	Trust: 0.3
vendor:	hitachi	model:	cosminexus application server	scope:	eq	version:	5.0	Trust: 0.3
vendor:	hitachi	model:	cosminexus	scope:	eq	version:	9.0	Trust: 0.3
vendor:	hitachi	model:	cosminexus	scope:	eq	version:	8.0	Trust: 0.3
vendor:	hitachi	model:	cosminexus	scope:	eq	version:	7.0	Trust: 0.3
vendor:	gentoo	model:	linux	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.1.3	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.1.2	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.1.1	Trust: 0.3
vendor:	avaya	model:	voice portal sp3	scope:	eq	version:	5.1	Trust: 0.3
vendor:	avaya	model:	voice portal sp2	scope:	eq	version:	5.1	Trust: 0.3
vendor:	avaya	model:	voice portal sp1	scope:	eq	version:	5.1	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.1	Trust: 0.3
vendor:	avaya	model:	voice portal sp2	scope:	eq	version:	5.0	Trust: 0.3
vendor:	avaya	model:	voice portal sp1	scope:	eq	version:	5.0	Trust: 0.3
vendor:	avaya	model:	voice portal	scope:	eq	version:	5.0	Trust: 0.3
vendor:	avaya	model:	proactive contact	scope:	eq	version:	5.1	Trust: 0.3
vendor:	avaya	model:	proactive contact	scope:	eq	version:	5.0	Trust: 0.3
vendor:	avaya	model:	messaging application server	scope:	eq	version:	5.2.1	Trust: 0.3
vendor:	avaya	model:	message networking	scope:	eq	version:	6.2.0	Trust: 0.3
vendor:	avaya	model:	meeting exchange	scope:	eq	version:	6.2	Trust: 0.3
vendor:	avaya	model:	meeting exchange	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	meeting exchange	scope:	eq	version:	5.2	Trust: 0.3
vendor:	avaya	model:	meeting exchange	scope:	eq	version:	5.1	Trust: 0.3
vendor:	avaya	model:	meeting exchange	scope:	eq	version:	5.0	Trust: 0.3
vendor:	avaya	model:	ir	scope:	eq	version:	4.0	Trust: 0.3
vendor:	avaya	model:	ip office application server	scope:	eq	version:	8.1	Trust: 0.3
vendor:	avaya	model:	ip office application server	scope:	eq	version:	8.0	Trust: 0.3
vendor:	avaya	model:	communication server 1000m signaling server	scope:	eq	version:	7.5	Trust: 0.3
vendor:	avaya	model:	communication server 1000m signaling server	scope:	eq	version:	7.0	Trust: 0.3
vendor:	avaya	model:	communication server 1000m signaling server	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	communication server 1000m	scope:	eq	version:	7.5	Trust: 0.3
vendor:	avaya	model:	communication server 1000m	scope:	eq	version:	7.0	Trust: 0.3
vendor:	avaya	model:	communication server 1000m	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	communication server 1000e signaling server	scope:	eq	version:	7.5	Trust: 0.3
vendor:	avaya	model:	communication server 1000e signaling server	scope:	eq	version:	7.0	Trust: 0.3
vendor:	avaya	model:	communication server 1000e signaling server	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	communication server 1000e	scope:	eq	version:	7.5	Trust: 0.3
vendor:	avaya	model:	communication server 1000e	scope:	eq	version:	7.0	Trust: 0.3
vendor:	avaya	model:	communication server 1000e	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	cms r17	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	cms r16.3	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	cms r16	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	cms r15	scope:	-	version:	-	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.3	Trust: 0.3
vendor:	avaya	model:	aura system manager sp3	scope:	eq	version:	6.2	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.2	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1.5	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1.3	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1.2	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	avaya	model:	aura system manager sp2	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura system manager sp1	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura system manager sp1	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura system manager	scope:	eq	version:	5.2	Trust: 0.3
vendor:	avaya	model:	aura sip enablement services	scope:	eq	version:	5.2.1	Trust: 0.3
vendor:	avaya	model:	aura sip enablement services	scope:	eq	version:	5.2	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.2.1	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1.5	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1.3	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1.2	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.0.1	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.3	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.2.2	Trust: 0.3
vendor:	avaya	model:	aura session manager sp1	scope:	eq	version:	6.2	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.2	Trust: 0.3
vendor:	avaya	model:	aura session manager sp2	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura session manager sp1	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura session manager sp1	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	5.2.1	Trust: 0.3
vendor:	avaya	model:	aura session manager sp2	scope:	eq	version:	5.2	Trust: 0.3
vendor:	avaya	model:	aura session manager sp1	scope:	eq	version:	5.2	Trust: 0.3
vendor:	avaya	model:	aura session manager	scope:	eq	version:	5.2	Trust: 0.3
vendor:	avaya	model:	aura presence services	scope:	eq	version:	6.1.2	Trust: 0.3
vendor:	avaya	model:	aura presence services	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	avaya	model:	aura presence services sp1	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura presence services	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura presence services	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura messaging	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	avaya	model:	aura messaging	scope:	eq	version:	6.2	Trust: 0.3
vendor:	avaya	model:	aura messaging	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura messaging	scope:	eq	version:	6.0.1	Trust: 0.3
vendor:	avaya	model:	aura messaging	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura experience portal	scope:	eq	version:	6.0.2	Trust: 0.3
vendor:	avaya	model:	aura experience portal	scope:	eq	version:	6.0.1	Trust: 0.3
vendor:	avaya	model:	aura experience portal	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura conferencing	scope:	eq	version:	7.0	Trust: 0.3
vendor:	avaya	model:	aura conferencing standard	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura conferencing sp1 standard	scope:	eq	version:	6.0	Trust: 0.3
vendor:	avaya	model:	aura application server sip core	scope:	eq	version:	53003.0	Trust: 0.3
vendor:	avaya	model:	aura application server sip core	scope:	eq	version:	53002.0	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2.1	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	6.1.2	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	6.1	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2.4	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2.3	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2.2	Trust: 0.3
vendor:	avaya	model:	aura application enablement services	scope:	eq	version:	5.2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7.5	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7.4	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7.3	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7.2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7.1	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.7	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.6.8	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.8.4	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.8.2	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.8.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7.5	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.8.3	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.8	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7.4	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7.3	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7.2	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.7	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.6.8	Trust: 0.3
vendor:	schneider electric	model:	trio tview software	scope:	ne	version:	3.29.0	Trust: 0.3
vendor:	ibm	model:	websphere real time sr5	scope:	ne	version:	3	Trust: 0.3
vendor:	ibm	model:	websphere message broker	scope:	ne	version:	6.1.0.12	Trust: 0.3
vendor:	ibm	model:	virtualization engine ts7700	scope:	ne	version:	8.31.0.89	Trust: 0.3
vendor:	ibm	model:	tivoli system automation for integrated operations management	scope:	ne	version:	2.1.1.5	Trust: 0.3
vendor:	ibm	model:	lotus notes fix pack	scope:	ne	version:	8.5.35	Trust: 0.3
vendor:	ibm	model:	lotus domino fix pack	scope:	ne	version:	8.5.35	Trust: 0.3
vendor:	ibm	model:	java sdk sr5	scope:	ne	version:	7	Trust: 0.3
vendor:	ibm	model:	java sdk sr6	scope:	ne	version:	6.0.1	Trust: 0.3
vendor:	ibm	model:	java sdk sr14	scope:	ne	version:	6	Trust: 0.3
vendor:	ibm	model:	java sdk sr16-fp3	scope:	ne	version:	5.0	Trust: 0.3
vendor:	ibm	model:	java sdk sr13-fp18	scope:	ne	version:	1.4.2	Trust: 0.3
vendor:	ibm	model:	integration bus	scope:	ne	version:	9.0.0.1	Trust: 0.3

sources: BID: 60643 // CNNVD: CNNVD-201306-298 // NVD: CVE-2013-2442

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2013-2442
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-201306-298
value:	HIGH
Trust: 0.6

nvd@nist.gov:	CVE-2013-2442
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0

sources: CNNVD: CNNVD-201306-298 // NVD: CVE-2013-2442

PROBLEMTYPE DATA

problemtype:

NVD-CWE-noinfo

Trust: 1.0

sources: NVD: CVE-2013-2442

THREAT TYPE

remote

Trust: 0.8

sources: PACKETSTORM: 122653 // PACKETSTORM: 122651 // CNNVD: CNNVD-201306-298

TYPE

Unknown

Trust: 0.3

sources: BID: 60643

PATCH

title:	jre-7u25-linux-i586	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46255	Trust: 0.6
title:	jre-7u25-macosx-x64	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46259	Trust: 0.6
title:	jre-7u25-solaris-sparc	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46263	Trust: 0.6
title:	jre-7u25-windows-i586	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46267	Trust: 0.6
title:	jre-7u25-linux-x64	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46258	Trust: 0.6
title:	jre-7u25-macosx-x64	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46260	Trust: 0.6
title:	jre-7u25-solaris-sparcv9	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46264	Trust: 0.6
title:	jre-7u25-windows-x64	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46268	Trust: 0.6
title:	jre-7u25-solaris-x64	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46262	Trust: 0.6
title:	jre-7u25-windows-i586	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46266	Trust: 0.6
title:	jre-7u25-linux-x64	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46257	Trust: 0.6
title:	jre-7u25-solaris-i586	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46261	Trust: 0.6
title:	jre-7u25-windows-i586-iftw	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46265	Trust: 0.6
title:	jre-7u25-windows-x64	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46269	Trust: 0.6
title:	jre-7u25-linux-i586	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=46256	Trust: 0.6

sources: CNNVD: CNNVD-201306-298

EXTERNAL IDS

db:	NVD	id:	CVE-2013-2442	Trust: 2.6
db:	BID	id:	60643	Trust: 1.9
db:	USCERT	id:	TA13-169A	Trust: 1.6
db:	SECUNIA	id:	54154	Trust: 1.6
db:	CNNVD	id:	CNNVD-201306-298	Trust: 0.6
db:	HITACHI	id:	HS13-015	Trust: 0.3
db:	ICS CERT	id:	ICSA-17-213-02	Trust: 0.3
db:	PACKETSTORM	id:	123734	Trust: 0.1
db:	PACKETSTORM	id:	126195	Trust: 0.1
db:	PACKETSTORM	id:	123735	Trust: 0.1
db:	PACKETSTORM	id:	122109	Trust: 0.1
db:	PACKETSTORM	id:	122653	Trust: 0.1
db:	PACKETSTORM	id:	122651	Trust: 0.1
db:	PACKETSTORM	id:	122404	Trust: 0.1

sources: BID: 60643 // PACKETSTORM: 123734 // PACKETSTORM: 126195 // PACKETSTORM: 123735 // PACKETSTORM: 122109 // PACKETSTORM: 122653 // PACKETSTORM: 122651 // PACKETSTORM: 122404 // CNNVD: CNNVD-201306-298 // NVD: CVE-2013-2442

REFERENCES

url:	http://www.oracle.com/technetwork/topics/security/javacpujun2013-1899847.html	Trust: 2.1
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21642336	Trust: 1.9
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21644197	Trust: 1.9
url:	http://rhn.redhat.com/errata/rhsa-2013-1455.html	Trust: 1.7
url:	http://rhn.redhat.com/errata/rhsa-2013-1456.html	Trust: 1.7
url:	http://rhn.redhat.com/errata/rhsa-2013-0963.html	Trust: 1.7
url:	http://rhn.redhat.com/errata/rhsa-2013-1059.html	Trust: 1.7
url:	http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00027.html	Trust: 1.6
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a19460	Trust: 1.6
url:	http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00003.html	Trust: 1.6
url:	http://rhn.redhat.com/errata/rhsa-2013-1060.html	Trust: 1.6
url:	https://access.redhat.com/errata/rhsa-2014:0414	Trust: 1.6
url:	http://www.us-cert.gov/ncas/alerts/ta13-169a	Trust: 1.6
url:	http://secunia.com/advisories/54154	Trust: 1.6
url:	http://marc.info/?l=bugtraq&m=137545505800971&w=2	Trust: 1.6
url:	http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00026.html	Trust: 1.6
url:	http://www.securityfocus.com/bid/60643	Trust: 1.6
url:	http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00028.html	Trust: 1.6
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a16803	Trust: 1.6
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a19569	Trust: 1.6
url:	http://marc.info/?l=bugtraq&m=137545592101387&w=2	Trust: 1.6
url:	https://www-304.ibm.com/support/docview.wss?uid=swg21650778	Trust: 0.6
url:	https://www.redhat.com/security/data/cve/cve-2013-2468.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2463.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2446.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-1500.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2444.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2454.html	Trust: 0.5
url:	https://www.redhat.com/mailman/listinfo/rhsa-announce	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2451.html	Trust: 0.5
url:	https://access.redhat.com/security/team/key/#package	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2456.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2407.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2470.html	Trust: 0.5
url:	https://access.redhat.com/security/team/contact/	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2471.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2443.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2457.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2412.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2447.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2452.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2464.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-1571.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2465.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2472.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2466.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2453.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2473.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2437.html	Trust: 0.5
url:	http://bugzilla.redhat.com/):	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2450.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2455.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2442.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2459.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2448.html	Trust: 0.5
url:	https://www.redhat.com/security/data/cve/cve-2013-2469.html	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2456	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2455	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2459	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-1571	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2448	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2446	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2450	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2442	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2453	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2437	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2407	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2447	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2452	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2463	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2454	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2444	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2457	Trust: 0.5
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2412	Trust: 0.5
url:	http://www.ibm.com/developerworks/java/jdk/alerts/	Trust: 0.4
url:	https://www.redhat.com/security/data/cve/cve-2013-3743.html	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2464	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2465	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2451	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2445	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2013-1500	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2443	Trust: 0.4
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2461	Trust: 0.4
url:	http://www.oracle.com/index.html	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=nas36583326fc6c02fdf86257bc60079968c	Trust: 0.3
url:	https://ics-cert.us-cert.gov/advisories/icsa-17-213-02	Trust: 0.3
url:	http://alerts.hp.com/r?2.1.3kt.2zr.xg7ek.jtfhr2..t.cyta.7%2a%2ak.bw89mq%5f%5fdehufqb0	Trust: 0.3
url:	http://alerts.hp.com/r?2.1.3kt.2zr.xg7ek.jtfhr2..t.cytc.7%2a%2ak.bw89mq%5f%5fdeoifqd0	Trust: 0.3
url:	http://www.hitachi.co.jp/prod/comp/soft1/global/security/info/vuls/hs13-015/index.html	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=isg400001621	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21640206	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21647053	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=nas8n1019760	Trust: 0.3
url:	https://downloads.avaya.com/css/p8/documents/100175056	Trust: 0.3
url:	http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5094215	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21644918	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21647384	Trust: 0.3
url:	https://www-304.ibm.com/support/docview.wss?uid=swg21643697	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21650599	Trust: 0.3
url:	https://www-304.ibm.com/support/docview.wss?uid=ssg1s1004514	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21645500	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21648074	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21652561	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg24036927	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21663487	Trust: 0.3
url:	http://www-01.ibm.com/support/docview.wss?uid=swg21663199	Trust: 0.3
url:	http://www.xerox.com/download/security/security-bulletin/12047-4e4eed8d42ca6/cert_xrx13-007_v1.0.pdf	Trust: 0.3
url:	https://access.redhat.com/site/articles/11258	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2468	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2466	Trust: 0.3
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2469	Trust: 0.3
url:	https://www.redhat.com/security/data/cve/cve-2013-1540.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1476.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0428.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1480.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2419.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0401.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0425.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5089.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1722.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5079.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0419.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2422.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1721.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5081.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0409.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5071.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0423.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1532.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-3216.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5069.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5084.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0443.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0809.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1487.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0351.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-4820.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0427.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0433.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1493.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1569.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5073.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-4823.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2435.html	Trust: 0.2
url:	https://access.redhat.com/security/updates/classification/#low	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5068.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1541.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-4822.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-3159.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1557.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5075.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2429.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1713.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-3213.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0441.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5072.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1718.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0432.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0446.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1481.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1537.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1717.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1531.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2432.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0450.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1491.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2383.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2418.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1473.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-0547.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1563.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2424.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2433.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1716.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-5083.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1533.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-3342.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0426.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-3143.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0440.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1725.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2417.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0445.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2394.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1682.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2430.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0442.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-0551.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0424.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2012-1719.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1486.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2384.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0169.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0438.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-1478.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0435.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-0434.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2420.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2440.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2445.html	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2013-2461.html	Trust: 0.2
url:	https://access.redhat.com/security/updates/classification/#critical	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2458	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2400	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2449	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2460	Trust: 0.2
url:	https://access.redhat.com/knowledge/articles/11258	Trust: 0.2
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2462	Trust: 0.2
url:	http://www.hp.com/java	Trust: 0.2
url:	http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins	Trust: 0.2
url:	https://www.hp.com/go/swa	Trust: 0.2
url:	https://h20564.www2.hp.com/portal/site/hpsc/public/kb/	Trust: 0.2
url:	https://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/	Trust: 0.2
url:	https://www.redhat.com/security/data/cve/cve-2011-0873.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3548.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3521	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3556.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3563.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3546	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3551.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0497.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0500.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3389.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3561.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0863.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0499.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0862	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0867.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0507.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3552.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0814.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3547.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3549	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0503.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3554.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3549.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3553	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3516.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0871.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3554	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0868.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3389	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0873	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3548	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3521.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3551	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3547	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3553.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3545	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0802.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0865.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3516	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3545.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0862.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3561	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3556	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3544.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0867	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0506.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0501.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0869	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3560.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3550	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3557.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0865	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0502.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0498.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3560	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3546.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3552	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3544	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-0869.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0863	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-3550.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2011-5035.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-3557	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2012-0505.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0871	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0868	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0802	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2011-0814	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0451.html	Trust: 0.1
url:	http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0449.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5896.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5817.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0452.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5797.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-2428.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0428.html	Trust: 0.1
url:	https://rhn.redhat.com/errata/rhsa-2014-0414.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5910.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0446.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5782.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5802.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5803.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5832.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5778.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5823.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5899.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5783.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0457.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5801.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5780.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-2420.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-2409.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-6629.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0416.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0453.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-6954.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5818.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5824.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5789.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0403.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5850.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5812.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5842.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0422.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5902.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5849.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0368.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5889.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0415.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-2403.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0375.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5831.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0423.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5878.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5776.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0376.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5848.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0410.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5852.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5840.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-2427.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-3829.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5907.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5772.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0373.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0458.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0411.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0460.html	Trust: 0.1
url:	http://www.oracle.com/technetwork/topics/security/cpuapr2014-1972952.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5905.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0417.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0424.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5819.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-2412.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-2398.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5820.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5809.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5898.html	Trust: 0.1
url:	http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-2421.html	Trust: 0.1
url:	https://access.redhat.com/security/updates/classification/#important	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5884.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5825.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5774.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0461.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-2423.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5830.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-2414.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5784.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5887.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-4002.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0418.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5906.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0387.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-1876.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-2401.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0456.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5790.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5787.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5804.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5843.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5888.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5814.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2014-0429.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-5829.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-3342	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-4823	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-3143	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1541	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1719	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1533	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-4822	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-3216	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0547	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5068	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1725	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1532	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-3213	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5069	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-0551	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-4820	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1717	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1722	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1716	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1718	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1531	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5071	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1713	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5072	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1682	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-1721	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-3159	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2012-5073	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-3744.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2460.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2449.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2400.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2462.html	Trust: 0.1
url:	https://www.redhat.com/security/data/cve/cve-2013-2458.html	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2433	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2470	Trust: 0.1
url:	https://nvd.nist.gov/vuln/detail/cve-2013-2471	Trust: 0.1

CREDITS

Red Hat

Trust: 0.5

sources: PACKETSTORM: 123734 // PACKETSTORM: 126195 // PACKETSTORM: 123735 // PACKETSTORM: 122109 // PACKETSTORM: 122404

SOURCES

db:	BID	id:	60643
db:	PACKETSTORM	id:	123734
db:	PACKETSTORM	id:	126195
db:	PACKETSTORM	id:	123735
db:	PACKETSTORM	id:	122109
db:	PACKETSTORM	id:	122653
db:	PACKETSTORM	id:	122651
db:	PACKETSTORM	id:	122404
db:	CNNVD	id:	CNNVD-201306-298
db:	NVD	id:	CVE-2013-2442

LAST UPDATE DATE

2024-11-11T19:42:20.771000+00:00

SOURCES UPDATE DATE

db:	BID	id:	60643	date:	2017-08-14T20:11:00
db:	CNNVD	id:	CNNVD-201306-298	date:	2022-05-16T00:00:00
db:	NVD	id:	CVE-2013-2442	date:	2022-05-13T14:52:52.740

SOURCES RELEASE DATE

db:	BID	id:	60643	date:	2013-06-18T00:00:00
db:	PACKETSTORM	id:	123734	date:	2013-10-23T22:57:57
db:	PACKETSTORM	id:	126195	date:	2014-04-17T22:01:36
db:	PACKETSTORM	id:	123735	date:	2013-10-23T22:58:21
db:	PACKETSTORM	id:	122109	date:	2013-06-21T01:38:12
db:	PACKETSTORM	id:	122653	date:	2013-08-02T15:12:49
db:	PACKETSTORM	id:	122651	date:	2013-08-02T15:05:49
db:	PACKETSTORM	id:	122404	date:	2013-07-15T14:54:00
db:	CNNVD	id:	CNNVD-201306-298	date:	2013-06-19T00:00:00
db:	NVD	id:	CVE-2013-2442	date:	2013-06-18T22:55:02.343