Vulnerability in Ibm Java
CVE-2013-3009
The com.ibm.CORBA.iiop.ClientDelegate class in IBM Java 1.4.2 before 1.4.2 SR13-FP18, 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 improperly exposes the invoke method of the java.lang.reflect.Method…
EPSS: 0.058 (90.7th percentile) — read the EPSS interpretation.
Affected products
- Ibm Java — versions 1.4.2, 1.4.2.13, 1.4.2.13.1
- N/a — versions n/a
References
- RHSA-2013:1060 (x_refsource_REDHAT, vendor-advisory)
- psirt@us.ibm.com (x_refsource_MISC)
- SUSE-SU-2013:1264 (vendor-advisory, x_refsource_SUSE)
- SUSE-SU-2013:1257 (vendor-advisory, x_refsource_SUSE)
- SUSE-SU-2013:1256 (vendor-advisory, x_refsource_SUSE)
- 54154 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)
- IV44792 (vendor-advisory, x_refsource_AIXAPAR)
- psirt@us.ibm.com (x_refsource_MISC)
- SUSE-SU-2013:1263 (vendor-advisory, x_refsource_SUSE)
- RHSA-2013:1059 (x_refsource_REDHAT, vendor-advisory)