Описание
Heap-based buffer overflow in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.2_18 and earlier might allow remote attackers to execute arbitrary code via a crafted TrueType font file.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 3 | java-1.4.2-ibm | Will not fix | ||
| Red Hat Enterprise Linux 4 | java-1.4.2-ibm | Will not fix | ||
| Red Hat Enterprise Linux 5 | java-1.4.2-ibm | Will not fix | ||
| Red Hat Enterprise Linux 5 | java-1.4.2-ibm-sap | Will not fix | ||
| Red Hat Enterprise Linux 5 | java-1.6.0-openjdk | Not affected | ||
| Red Hat Enterprise Linux 6 | java-1.4.2-ibm-sap | Will not fix | ||
| Red Hat Enterprise Linux 6 | java-1.5.0-ibm | Not affected | ||
| Red Hat Enterprise Linux 6 | java-1.6.0-ibm | Not affected | ||
| Red Hat Enterprise Linux 6 | java-1.6.0-openjdk | Not affected | ||
| Red Hat Enterprise Linux 6 | java-1.6.0-sun | Not affected |
Показывать по
Дополнительная информация
Статус:
EPSS
7.5 High
CVSS2
Связанные уязвимости
Heap-based buffer overflow in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.2_18 and earlier might allow remote attackers to execute arbitrary code via a crafted TrueType font file.
Heap-based buffer overflow in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.2_18 and earlier might allow remote attackers to execute arbitrary code via a crafted TrueType font file.
Heap-based buffer overflow in Java Runtime Environment (JRE) for Sun J ...
Heap-based buffer overflow in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.2_18 and earlier might allow remote attackers to execute arbitrary code via a crafted TrueType font file.
EPSS
7.5 High
CVSS2