FortiClient Vulnerability

Oracle Java JRE CVE-2013-1489 Vulnerability

Description

Supported versions that are affected are 7 Update 11 and 7 Update 10. Note: This issue (CVE-2013-1489) has been discussed publicly and is sometimes known as the "Java Security Slider vulnerability". It has a CVSS of 0 because it does not directly result in an exploitation, but may be combined with other vulnerabilities to allow blind exploitation. When the Security Slider is set to the default (high) all unsigned applets must be authorized via a dialog box by a browser user in order to execute. This provides the browser operator the opportunity to prevent execution of suspicious applets that may result in successful exploits. However, when CVE-2013-1489 is combined with vulnerabilities that can be used to cause direct impacts, the effect can be that the impact can be caused "silently" without the authorization dialog box.

Affected Applications

Java JRE

CVE References

CVE-2013-1489

Other References

http://www.oracle.com/technetwork/topics/security/javacpufeb2013-1841061.html

ID	25108
Created	Jul 11, 2018
Description Updated	Dec 19, 2023
Risk
Coverage	FortiClient
OS	Windows
Vendor	Oracle
Patch	auto
Application	Java JRE

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

FortiClient Vulnerability

Oracle Java JRE CVE-2013-1489 Vulnerability

Description

Affected Applications

CVE References

Other References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

FortiClient Vulnerability

Oracle Java JRE CVE-2013-1489 Vulnerability

Description

Affected Applications

CVE References

Other References

Threat Intelligence
Center