CVE-2013-1927
EPSS 2.5%Published: 4/29/2013Modified: 4/28/2026
Also known as:DEBIAN-CVE-2013-1927
Description
The IcedTea-Web plugin before 1.2.3 and 1.3.x before 1.3.2 allows remote attackers to execute arbitrary code via a crafted file that validates as both a GIF and a Java JAR file, aka "GIFAR."
Affected packages (1)
- Debian/icedtea-webfrom 0, < 1.3.2-1