Description

Unspecified vulnerability in the 2D component in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code via unknown vectors, a different vulnerability than CVE-2013-1493.

Remediation

References

CVE-2013-0809

Related Vulnerabilities

SugarCRM Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-17373)

Plone CMS Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2012-5493)

Roundcube Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-19206)

Joomla Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2011-4907)

WordPress Plugin Nofollow Links Cross-Site Scripting (1.0.10)

Severity

Critical

Classification

CVE-2013-0809

Tags

Missing Update Known Vulnerabilities