CVE-2013-0422

Summary

CVE-2013-0422 is a critical vulnerability affecting Oracle Java 7 before Update 11. This issue allows remote attackers to execute arbitrary code in two ways: first, by manipulating the JmxMBeanServer class's getMBeanInstantiator method to gain access to a private MBeanInstantiator object, and then using its findClass method to retrieve arbitrary Class references. Second, attackers can exploit a flaw in the Reflection API's checkSecurityManager method by using recursion, allowing them to bypass security checks. These vulnerabilities were exploited in the wild in January 2013, leading to the creation of malware like Blackhole and Nuclear Pack. CVE-2013-0422 is distinct from CVE-2012-4681 and CVE-2012-3174, although some confusion exists regarding the relationship between the Reflection API issue and CVE-2012-3174. As of January 2013, it is unclear if Oracle Java 7 Update 11 addresses the findClass/MBeanInstantiator vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.