Integer overflow in unpack200 in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and previous versions, and 6 Update 12 and previous versions, allows remote malicious users to access files or execute arbitrary code via a JAR file with crafted Pack200 headers.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun jdk 1.5.0 |
||
sun jre 1.5.0 |
||
sun jre |
||
sun jdk |
||
sun jre 1.6.0 |
||
sun jdk 1.6.0 |