Vulnerabilities

CVE-2009-2674

by Fred · 05/08/2009

Integer overflow in javaws.exe in Sun Java Web Start in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 allows context-dependent attackers to execute arbitrary code via a crafted JPEG image that is not properly handled during display to a splash screen, which triggers a heap-based buffer overflow.

Date published : 2009-08-05

http://lists.apple.com/archives/security-announce/2009/Sep/msg00000.html

http://www.us-cert.gov/cas/techalerts/TA09-294A.html

Similar

Tags: Cybersecurity Alert