Integer overflow in the unpack200 utility in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows context-dependent malicious users to gain privileges via unspecified length fields in the header of a Pack200-compressed JAR file, which leads to a heap-based buffer overflow during decompression.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun jdk 6 |
||
sun jre 6 |
||
sun jre 5.0 |
||
sun jdk 5.0 |
||
sun jdk |
||
sun jre |