CVE Kennung:	CVE-2013-4002
Beschreibung:	XMLscanner.java in Apache Xerces2 Java Parser before 2.12.0, as used in the Java Runtime Environment (JRE) in IBM Java 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7 SR5 as well as Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, JRockit R28.2.8 and earlier, JRockit R27.7.6 and earlier, Java SE Embedded 7u40 and earlier, and possibly other products allows remote attackers to cause a denial of service via vectors related to XML attribute names.
Test Kennungen:	1.3.6.1.4.1.25623.1.0.882043   1.3.6.1.4.1.25623.1.0.868207   1.3.6.1.4.1.25623.1.0.871252   1.3.6.1.4.1.25623.1.0.882045   1.3.6.1.4.1.25623.1.0.868205   1.3.6.1.4.1.25623.1.0.120345   1.3.6.1.4.1.25623.1.0.120121   1.3.6.1.4.1.25623.1.0.120197   1.3.6.1.4.1.25623.1.0.123297   1.3.6.1.4.1.25623.1.1.4.2013.1255.1   1.3.6.1.4.1.25623.1.1.4.2013.1255.2   1.3.6.1.4.1.25623.1.1.4.2013.1257.1   1.3.6.1.4.1.25623.1.1.4.2013.1263.1   1.3.6.1.4.1.25623.1.1.4.2013.1256.1   1.3.6.1.4.1.25623.1.1.4.2013.1255.3   1.3.6.1.4.1.25623.1.1.4.2013.1305.1   1.3.6.1.4.1.25623.1.1.4.2013.1263.2
Querverweise:	Common Vulnerability Exposure (CVE) ID: CVE-2013-4002 AIX APAR: IC98015 http://www-01.ibm.com/support/docview.wss?uid=swg1IC98015 http://lists.apple.com/archives/security-announce/2013/Oct/msg00001.html BugTraq ID: 61310 http://www.securityfocus.com/bid/61310 http://security.gentoo.org/glsa/glsa-201406-32.xml HPdes Security Advisory: HPSBUX02943 http://marc.info/?l=bugtraq&m=138674031212883&w=2 HPdes Security Advisory: HPSBUX02944 http://marc.info/?l=bugtraq&m=138674073720143&w=2 http://www.ibm.com/developerworks/java/jdk/alerts/#IBM_Security_Update_July_2013 https://lists.apache.org/thread.html/49dc6702104a86ecbb40292dcd329ce9ae4c32b74733199ecab14a73@%3Cj-users.xerces.apache.org%3E https://lists.apache.org/thread.html/708d94141126eac03011144a971a6411fcac16d9c248d1d535a39451@%3Csolr-user.lucene.apache.org%3E https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5@%3Csolr-user.lucene.apache.org%3E https://lists.apache.org/thread.html/rf5230a049d989dbfdd404b4320a265dceeeba459a4d04ec21873bd55@%3Csolr-user.lucene.apache.org%3E RedHat Security Advisories: RHSA-2013:1059 http://rhn.redhat.com/errata/RHSA-2013-1059.html RedHat Security Advisories: RHSA-2013:1060 http://rhn.redhat.com/errata/RHSA-2013-1060.html RedHat Security Advisories: RHSA-2013:1081 http://rhn.redhat.com/errata/RHSA-2013-1081.html RedHat Security Advisories: RHSA-2013:1440 http://rhn.redhat.com/errata/RHSA-2013-1440.html RedHat Security Advisories: RHSA-2013:1447 http://rhn.redhat.com/errata/RHSA-2013-1447.html RedHat Security Advisories: RHSA-2013:1451 http://rhn.redhat.com/errata/RHSA-2013-1451.html RedHat Security Advisories: RHSA-2013:1505 http://rhn.redhat.com/errata/RHSA-2013-1505.html RedHat Security Advisories: RHSA-2014:0414 https://access.redhat.com/errata/RHSA-2014:0414 RedHat Security Advisories: RHSA-2014:1818 http://rhn.redhat.com/errata/RHSA-2014-1818.html RedHat Security Advisories: RHSA-2014:1821 http://rhn.redhat.com/errata/RHSA-2014-1821.html RedHat Security Advisories: RHSA-2014:1822 http://rhn.redhat.com/errata/RHSA-2014-1822.html RedHat Security Advisories: RHSA-2014:1823 http://rhn.redhat.com/errata/RHSA-2014-1823.html RedHat Security Advisories: RHSA-2015:0675 http://rhn.redhat.com/errata/RHSA-2015-0675.html RedHat Security Advisories: RHSA-2015:0720 http://rhn.redhat.com/errata/RHSA-2015-0720.html RedHat Security Advisories: RHSA-2015:0765 http://rhn.redhat.com/errata/RHSA-2015-0765.html RedHat Security Advisories: RHSA-2015:0773 http://rhn.redhat.com/errata/RHSA-2015-0773.html http://secunia.com/advisories/56257 SuSE Security Announcement: SUSE-SU-2013:1255 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00026.html SuSE Security Announcement: SUSE-SU-2013:1256 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00027.html SuSE Security Announcement: SUSE-SU-2013:1257 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00028.html SuSE Security Announcement: SUSE-SU-2013:1263 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00029.html SuSE Security Announcement: SUSE-SU-2013:1293 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00000.html SuSE Security Announcement: SUSE-SU-2013:1305 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00003.html SuSE Security Announcement: SUSE-SU-2013:1666 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00010.html SuSE Security Announcement: openSUSE-SU-2013:1663 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-11/msg00023.html http://www.ubuntu.com/usn/USN-2033-1 http://www.ubuntu.com/usn/USN-2089-1 XForce ISS Database: ibm-java-cve20134002-dos(85260) https://exchange.xforce.ibmcloud.com/vulnerabilities/85260