virus logo Intrusion Prevention

Oracle.Java.OpenType.Fonts.Handling.Memory.Corruption

description-logoDescription

This indicates an attack attempt to exploit a Memory Corruption vulnerability in Oracle Java.
The vulnerability is due to an error when the vulnerable software handles Java files containing OTF fonts. An attacker can exploit this by tricking an unsuspecting user into visiting a webpage containing a malicious Java applet, and execute arbitrary code within the context of the application.

affected-products-logoAffected Products

Oracle Java 7 Update 17 and before
Oracle Java 6 Update 43 and before
Oracle Java 5.0 Update 41 and before
Oracle JavaFX 2.2.7 and before

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
http://www.oracle.com/technetwork/topics/security/javacpuapr2013-1928497.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-11-13 14.723 Sig Added
2019-10-22 14.708 Sig Added

References

http://blog.accuvantlabs.com/blog/jdrake/pwn2own-2013-java-7-se-memory-corruption
ID 35597
Created Jun 25, 2013
Updated Sep 26, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2013-1491
Exploit Prediction Score 81.68%
Default Action drop
Active
Affected OS All
Affected App Oracle