Intrusion Prevention

Oracle.Java.2D.ImagingLib.Integer.Overflow

Description

This indicates an attack attempt against a Buffer Overflow vulnerability in Oracle Java.
The vulnerability is caused by an integer overflow error when the vulnerable library handles a large integer input. It allows a remote attacker to execute arbitrary code via a crafted Java Applet.

Affected Products

Oracle Java Development Kit (JDK) 5 Update 40 and prior
Oracle Java Development Kit (JDK) 6 Update 41 and prior
Oracle Java Development Kit (JDK) 7 Update 15 and prior
Oracle Java Runtime Environment (JRE) 5 Update 40 and prior
Oracle Java Runtime Environment (JRE) 6 Update 41 and prior
Oracle Java Runtime Environment (JRE) 7 Update 15 and prior

Impact

System Compromise: Remote attackers can execute arbitrary Java code in the context of the vulnerable systems.

Recommended Actions

Apply patch, available from the website.
http://www.oracle.com/technetwork/topics/security/alert-cve-2013-1493-1915081.html

CVE References

CVE-2013-0809