Multiple buffer overflows in Sun Java Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 7 and previous versions, Java System Development Kit (SDK) and JRE 1.4.2_12 and previous versions 1.4.x versions, and SDK and JRE 1.3.1_18 and previous versions allow malicious users to develop Java applets that read, write, or execute local files, possibly related to (1) integer overflows in the Java_sun_awt_image_ImagingLib_convolveBI, awt_parseRaster, and awt_parseColorModel functions; (2) a stack overflow in the Java_sun_awt_image_ImagingLib_lookupByteRaster function; and (3) improper handling of certain negative values in the Java_sun_font_SunLayoutEngine_nativeLayout function. NOTE: some of these details are obtained from third party information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun jdk 1.5.0 |
||
sun jre 1.5.0 |
||
sun jre 1.4.2 |
||
sun jre 1.4.2_7 |
||
sun jre 1.4.2_9 |
||
sun jre 1.3.1_2 |
||
sun jre 1.3.1_04 |
||
sun jre 1.3.1_06 |
||
sun jre 1.3.1_11 |
||
sun jre 1.3.1_13 |
||
sun jre 1.4.2_10 |
||
sun jre 1.4.2_11 |
||
sun jre 1.4.2_12 |
||
sun jre 1.3.1 |
||
sun jre 1.3.1_15 |
||
sun jre 1.3.1_16 |
||
sun jre 1.3.1_17 |
||
sun jre 1.3.1_18 |
||
sun jre 1.4.2_2 |
||
sun jre 1.4.2_3 |
||
sun jre 1.4.2_4 |
||
sun jre 1.4.2_5 |
||
sun jre 1.3.1_07 |
||
sun jre 1.3.1_08 |
||
sun jre 1.3.1_09 |
||
sun jre 1.3.1_10 |
||
sun jre 1.4.2_1 |
||
sun jre 1.4.2_6 |
||
sun jre 1.4.2_8 |
||
sun jre 1.3.1_03 |
||
sun jre 1.3.1_05 |
||
sun jre 1.3.1_12 |
||
sun jre 1.3.1_14 |
||
sun sdk 1.4.2 |
||
sun sdk 1.4.2_2 |
||
sun sdk 1.4.2_7 |
||
sun sdk 1.4.2_9 |
||
sun sdk 1.4.2_11 |
||
sun sdk 1.3.1_02 |
||
sun sdk 1.3.1_04 |
||
sun sdk 1.3.1_11 |
||
sun sdk 1.3.1_13 |
||
sun sdk 1.3.1_18 |
||
sun sdk 1.4.2_12 |
||
sun sdk 1.3.1 |
||
sun sdk 1.3.1_01 |
||
sun sdk 1.3.1_01a |
||
sun sdk 1.3.1_14 |
||
sun sdk 1.3.1_15 |
||
sun sdk 1.3.1_16 |
||
sun sdk 1.3.1_17 |
||
sun sdk 1.4.2_3 |
||
sun sdk 1.4.2_4 |
||
sun sdk 1.4.2_5 |
||
sun sdk 1.4.2_6 |
||
sun sdk 1.3.1_06 |
||
sun sdk 1.3.1_07 |
||
sun sdk 1.3.1_08 |
||
sun sdk 1.3.1_09 |
||
sun sdk 1.4.2_1 |
||
sun sdk 1.4.2_8 |
||
sun sdk 1.4.2_10 |
||
sun sdk 1.3.1_03 |
||
sun sdk 1.3.1_05 |
||
sun sdk 1.3.1_10 |
||
sun sdk 1.3.1_12 |