JavaFX Component Vulnerability in Oracle Java SE
CVE-2012-1543

Currently unrated

Key Information:

Vendor: Oracle
Status: Javafx
Vendor: CVE Published:; 2 February 2013

Summary

An unspecified vulnerability in the JavaFX component of Oracle Java SE versions 2.2.4 and earlier allows remote attackers to impact confidentiality, integrity, and availability through unknown vectors. This issue is distinct from other vulnerabilities noted in the February 2013 Critical Patch Update. Reports suggest that it may be associated with an invalid type cast in the JSObject class, although Oracle has not confirmed this information.

References

http://www.us-cert.gov/cas/techalerts/TA13-032A.html

third-party-advisoryx_refsource_CERT

http://www.kb.cert.org/vuls/id/858729

third-party-advisoryx_refsource_CERT-VN

http://marc.info/?l=bugtraq&m=136733161405818&w=2

vendor-advisoryx_refsource_HP

Timeline

Vulnerability published
Feb 2, 2013
Vulnerability Reserved
Mar 8, 2012