CVE-2013-5829 — HIGH (10.0)

Vulnerability Description

Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D, a different vulnerability than CVE-2013-5809.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Oracle	Jdk	1.5.0
Oracle	Jre	1.5.0
Redhat	Enterprise Linux Desktop	5.0
Redhat	Enterprise Linux Eus	6.4
Redhat	Enterprise Linux Server	5.0
Redhat	Enterprise Linux Server Aus	6.4
Redhat	Enterprise Linux Workstation	5.0
Canonical	Ubuntu Linux	10.04

References

http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.htmlBroken LinkMailing List
http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00010.htmlBroken Link
http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00013.htmlBroken Link
http://lists.opensuse.org/opensuse-updates/2013-11/msg00023.htmlBroken Link
http://marc.info/?l=bugtraq&m=138674031212883&w=2Issue TrackingMailing ListThird Party Advisory
http://marc.info/?l=bugtraq&m=138674073720143&w=2Issue TrackingMailing ListThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-1440.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-1447.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-1451.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-1505.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-1507.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-1508.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-1509.htmlThird Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-1793.htmlThird Party Advisory
http://secunia.com/advisories/56338Not Applicable

FAQ

What is CVE-2013-5829?

CVE-2013-5829 is a vulnerability with a CVSS score of 10.0 (HIGH). Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, and Java SE Embedded 7u40 and earlier allows remote attackers to affect confidential...

How severe is CVE-2013-5829?

CVE-2013-5829 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-5829?

Check the references section above for vendor advisories and patch information. Affected products include: Oracle Jdk, Oracle Jre, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Eus, Redhat Enterprise Linux Server.