Description
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue is related to GnomeFileTypeDetector and a missing check for read permissions for a path.
Remediation
References
Related Vulnerabilities
WordPress Plugin WangGuard Multiple Vulnerabilities (1.7.2)
WordPress Plugin Page Generator Cross-Site Scripting (1.5.8)
WordPress Plugin WP Maintenance Mode Cross-Site Request Forgery (1.8.7)
PrestaShop Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2013-6358)
WordPress Plugin Sliced Invoices-WordPress Invoice Multiple Vulnerabilities (3.8.2)