CVE-2013-1926

NONECVSS 0.0

0.0

The IcedTea-Web plugin before 1.2.3 and 1.3.x before 1.3.2 uses the same class loader for applets with the same codebase path but from different domains, which allows remote attackers to obtain sensitive information or possibly alter other applets via a crafted applet.

🔗 References (44)

secalert@redhathttp://icedtea.classpath.org/hg/release/icedtea-web-1.2/file/icedtea-web-1.2.3/NEWS
secalert@redhathttp://icedtea.classpath.org/hg/release/icedtea-web-1.2/rev/34b6f60ae586
secalert@redhathttp://icedtea.classpath.org/hg/release/icedtea-web-1.3/rev/25dd7c7ac39c
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2013-05/msg00020.html
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2013-07/msg00013.html
secalert@redhathttp://lists.opensuse.org/opensuse-updates/2013-04/msg00106.html
secalert@redhathttp://lists.opensuse.org/opensuse-updates/2013-05/msg00003.html
secalert@redhathttp://lists.opensuse.org/opensuse-updates/2013-05/msg00032.html
secalert@redhathttp://lists.opensuse.org/opensuse-updates/2013-06/msg00030.html
secalert@redhathttp://lists.opensuse.org/opensuse-updates/2013-06/msg00034.html
secalert@redhathttp://lists.opensuse.org/opensuse-updates/2013-06/msg00101.html
secalert@redhathttp://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-April/022790.html
secalert@redhathttp://osvdb.org/92543
secalert@redhathttp://rhn.redhat.com/errata/RHSA-2013-0753.html
secalert@redhathttp://secunia.com/advisories/53109

Is Your Infrastructure Affected by CVE-2013-1926?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2013-1926

📅 Published

🔄 Last Modified

🔗 References (44)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2013-1926?