ByteOS Network

CVE Vulnerability Details :

CVE-2013-1926

PUBLISHED

More Info Official Page

Assigner-redhat

Assigner Org ID-53f830b8-0a3f-465b-8143-3b8a9948e749

Published At-29 Apr, 2013 | 22:00

Updated At-06 Aug, 2024 | 15:20

▼CVE Numbering Authority (CNA)

The IcedTea-Web plugin before 1.2.3 and 1.3.x before 1.3.2 uses the same class loader for applets with the same codebase path but from different domains, which allows remote attackers to obtain sensitive information or possibly alter other applets via a crafted applet.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://osvdb.org/92543	vdb-entry x_refsource_OSVDB
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00020.html	vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-updates/2013-06/msg00034.html	vendor-advisory x_refsource_SUSE
https://exchange.xforce.ibmcloud.com/vulnerabilities/83642	vdb-entry x_refsource_XF
http://www.mandriva.com/security/advisories?name=MDVSA-2013:146	vendor-advisory x_refsource_MANDRIVA
http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00013.html	vendor-advisory x_refsource_SUSE
http://secunia.com/advisories/53109	third-party-advisory x_refsource_SECUNIA
http://icedtea.classpath.org/hg/release/icedtea-web-1.2/rev/34b6f60ae586	x_refsource_CONFIRM
http://lists.opensuse.org/opensuse-updates/2013-05/msg00032.html	vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-updates/2013-05/msg00003.html	vendor-advisory x_refsource_SUSE
http://secunia.com/advisories/53117	third-party-advisory x_refsource_SECUNIA
http://rhn.redhat.com/errata/RHSA-2013-0753.html	vendor-advisory x_refsource_REDHAT
http://lists.opensuse.org/opensuse-updates/2013-06/msg00101.html	vendor-advisory x_refsource_SUSE
http://lists.opensuse.org/opensuse-updates/2013-06/msg00030.html	vendor-advisory x_refsource_SUSE
http://icedtea.classpath.org/hg/release/icedtea-web-1.3/rev/25dd7c7ac39c	x_refsource_CONFIRM
http://www.ubuntu.com/usn/USN-1804-1	vendor-advisory x_refsource_UBUNTU
http://icedtea.classpath.org/hg/release/icedtea-web-1.2/file/icedtea-web-1.2.3/NEWS	x_refsource_CONFIRM
http://www.securityfocus.com/bid/59281	vdb-entry x_refsource_BID
https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0123	x_refsource_MISC
http://lists.opensuse.org/opensuse-updates/2013-04/msg00106.html	vendor-advisory x_refsource_SUSE
https://bugzilla.redhat.com/show_bug.cgi?id=916774	x_refsource_MISC
http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-April/022790.html	mailing-list x_refsource_MLIST

Hyperlink: http://osvdb.org/92543

Resource:

vdb-entry

x_refsource_OSVDB

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00020.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://lists.opensuse.org/opensuse-updates/2013-06/msg00034.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/83642

Resource:

vdb-entry

x_refsource_XF

Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2013:146

Resource:

vendor-advisory

x_refsource_MANDRIVA

Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00013.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://secunia.com/advisories/53109

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://icedtea.classpath.org/hg/release/icedtea-web-1.2/rev/34b6f60ae586

Resource:

x_refsource_CONFIRM

Hyperlink: http://lists.opensuse.org/opensuse-updates/2013-05/msg00032.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://lists.opensuse.org/opensuse-updates/2013-05/msg00003.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://secunia.com/advisories/53117

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://rhn.redhat.com/errata/RHSA-2013-0753.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://lists.opensuse.org/opensuse-updates/2013-06/msg00101.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://lists.opensuse.org/opensuse-updates/2013-06/msg00030.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://icedtea.classpath.org/hg/release/icedtea-web-1.3/rev/25dd7c7ac39c

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.ubuntu.com/usn/USN-1804-1

Resource:

vendor-advisory

x_refsource_UBUNTU

Hyperlink: http://icedtea.classpath.org/hg/release/icedtea-web-1.2/file/icedtea-web-1.2.3/NEWS

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.securityfocus.com/bid/59281

Resource:

vdb-entry

x_refsource_BID

Hyperlink: https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0123

Resource:

x_refsource_MISC

Hyperlink: http://lists.opensuse.org/opensuse-updates/2013-04/msg00106.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=916774

Resource:

x_refsource_MISC

Hyperlink: http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-April/022790.html

Resource:

mailing-list

x_refsource_MLIST

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://osvdb.org/92543	vdb-entry x_refsource_OSVDB x_transferred
http://lists.opensuse.org/opensuse-security-announce/2013-05/msg00020.html	vendor-advisory x_refsource_SUSE x_transferred
http://lists.opensuse.org/opensuse-updates/2013-06/msg00034.html	vendor-advisory x_refsource_SUSE x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/83642	vdb-entry x_refsource_XF x_transferred
http://www.mandriva.com/security/advisories?name=MDVSA-2013:146	vendor-advisory x_refsource_MANDRIVA x_transferred
http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00013.html	vendor-advisory x_refsource_SUSE x_transferred
http://secunia.com/advisories/53109	third-party-advisory x_refsource_SECUNIA x_transferred
http://icedtea.classpath.org/hg/release/icedtea-web-1.2/rev/34b6f60ae586	x_refsource_CONFIRM x_transferred
http://lists.opensuse.org/opensuse-updates/2013-05/msg00032.html	vendor-advisory x_refsource_SUSE x_transferred
http://lists.opensuse.org/opensuse-updates/2013-05/msg00003.html	vendor-advisory x_refsource_SUSE x_transferred
http://secunia.com/advisories/53117	third-party-advisory x_refsource_SECUNIA x_transferred
http://rhn.redhat.com/errata/RHSA-2013-0753.html	vendor-advisory x_refsource_REDHAT x_transferred
http://lists.opensuse.org/opensuse-updates/2013-06/msg00101.html	vendor-advisory x_refsource_SUSE x_transferred
http://lists.opensuse.org/opensuse-updates/2013-06/msg00030.html	vendor-advisory x_refsource_SUSE x_transferred
http://icedtea.classpath.org/hg/release/icedtea-web-1.3/rev/25dd7c7ac39c	x_refsource_CONFIRM x_transferred
http://www.ubuntu.com/usn/USN-1804-1	vendor-advisory x_refsource_UBUNTU x_transferred
http://icedtea.classpath.org/hg/release/icedtea-web-1.2/file/icedtea-web-1.2.3/NEWS	x_refsource_CONFIRM x_transferred
http://www.securityfocus.com/bid/59281	vdb-entry x_refsource_BID x_transferred
https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0123	x_refsource_MISC x_transferred
http://lists.opensuse.org/opensuse-updates/2013-04/msg00106.html	vendor-advisory x_refsource_SUSE x_transferred
https://bugzilla.redhat.com/show_bug.cgi?id=916774	x_refsource_MISC x_transferred
http://mail.openjdk.java.net/pipermail/distro-pkg-dev/2013-April/022790.html	mailing-list x_refsource_MLIST x_transferred