Oracle Java Flaws Let Remote Users Execute Arbitrary Code
JDK and JRE 7 Update 13 and earlier
JDK and JRE 6 Update 39 and earlier
JDK and JRE 5.0 Update 39 and earlier
SDK and JRE 1.4.2_41 and earlier
Several vulnerabilities were reported in Oracle Java.
A remote user can create a specially crafted Java Web Start application or Java applet that, when loaded by the target user, will execute arbitrary code on the target system. The code will run with the privileges of the target user.
The Libraries [CVE-2013-1484], JMX [CVE-2013-1486], and Deployment [CVE-2013-1487] components are affected.
A remote user can partially modify data on the target system [CVE-2013-1485]. The Libraries component is affected.
A remote user can create Java content that, when loaded by the target user, will execute arbitrary code on the target user's system.
A remote user can partially modify data on the target system.