Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2013-1927HistoryApr 29, 2013 - 10:55 p.m.
CVE-2013-1927
2013-04-2922:55:08
Debian Security Bug Tracker
security-tracker.debian.org
9
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.032
Percentile
91.2%
The IcedTea-Web plugin before 1.2.3 and 1.3.x before 1.3.2 allows remote attackers to execute arbitrary code via a crafted file that validates as both a GIF and a Java JAR file, aka “GIFAR.”
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | icedtea-web | < 1.3.2-1 | icedtea-web_1.3.2-1_all.deb |
| Debian | 11 | all | icedtea-web | < 1.3.2-1 | icedtea-web_1.3.2-1_all.deb |
| Debian | 999 | all | icedtea-web | < 1.3.2-1 | icedtea-web_1.3.2-1_all.deb |
| Debian | 13 | all | icedtea-web | < 1.3.2-1 | icedtea-web_1.3.2-1_all.deb |
Related
cve
cve
CVE-2013-1927
2013-04-29 22:55:08
prion
prion
Code injection
2013-04-29 22:55:00
nvd
nvd
CVE-2013-1927
2013-04-29 22:55:08
ubuntucve
ubuntucve
CVE-2013-1927
2013-04-17 00:00:00
cvelist
cvelist
CVE-2013-1927
2013-04-29 22:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-1804-2)
2013-04-25 00:00:00
Fedora Update for icedtea-web FEDORA-2013-5962
2013-04-19 00:00:00
Fedora Update for icedtea-web FEDORA-2013-5962
2013-04-19 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 04:44:40
nessus
nessus
Fedora 18 : icedtea-web-1.3.2-0.fc18 (2013-5962)
2013-04-18 00:00:00
Ubuntu 11.10 / 12.04 LTS : icedtea-web regression (USN-1804-2)
2013-04-24 00:00:00
redhat
redhat
(RHSA-2013:0753) Moderate: icedtea-web security update
2013-04-17 00:00:00
centos
centos
icedtea security update
2013-04-17 22:33:18
securityvulns
securityvulns
[USN-1804-1] IcedTea-Web vulnerabilities
2013-04-22 00:00:00
IcedTea-Web security vulnerabilities
2013-04-22 00:00:00
oraclelinux
oraclelinux
icedtea-web security update
2013-04-17 00:00:00
ubuntu
ubuntu
IcedTea-Web regression
2013-04-23 00:00:00
IcedTea-Web vulnerabilities
2013-04-18 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: icedtea-web-1.3.2-0.fc19
2013-04-25 14:16:11
[SECURITY] Fedora 18 Update: icedtea-web-1.3.2-0.fc18
2013-04-18 02:48:19
[SECURITY] Fedora 18 Update: icedtea-web-1.4.1-0.fc18
2013-10-04 01:58:51
suse
suse
Security update for icedtea-web (important)
2013-07-10 19:04:21
Security update for icedtea-web (important)
2013-05-31 19:04:15
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.032
Percentile
91.2%
Related for DEBIANCVE:CVE-2013-1927