CVE-2013-0435: Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 through Update 11 and 6 th

CVE-2013-0435 is a security flaw in Oracle Java SE 6 and 7 (specifically versions 6 through Update 38, and 7 through Update 11) related to JAX-WS (a Java web services framework) that could allow attackers to access sensitive information. The vulnerability only affects client-side Java deployments and can be exploited through untrusted Java Web Start applications (programs downloaded and run through Java) and untrusted Java applets (small programs embedded in web pages), though these run with limited privileges in a sandbox (a restricted environment).