CVE-2013-1927

描述

The IcedTea-Web plugin before 1.2.3 and 1.3.x before 1.3.2 allows remote attackers to execute arbitrary code via a crafted file that validates as both a GIF and a Java JAR file, aka "GIFAR."

受影響套件(1)

• Debian/icedtea-webfrom 0, < 1.3.2-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-1927