Oval Definition:oval:org.mitre.oval:def:12057
Revision Date:2015-04-20Version:28
Title:HP-UX Running Java, Remote Increase in Privilege, Denial of Service and Other Vulnerabilities
Description:Integer overflow in the JPEGImageReader implementation in the ImageI/O component in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary code via large subsample dimensions in a JPEG file that triggers a heap-based buffer overflow, aka Bug Id 6874643.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-3874
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Criteria meets HP Security Bulletin HPSBUX02503 SSRT100019 rev.1
  • HP-UX B.11.11
  • AND filesets tests
  • Jdk15.JDK15-IPF32 version is less than 1.5.0.19.00
  • OR Jre15.JRE15-COM version is less than 1.5.0.19.00
  • OR Jdk15.JDK15-IPF64 version is less than 1.5.0.19.00
  • OR Jre15.JRE15-PA20 version is less than 1.5.0.19.00
  • OR Jre15.JRE15-PA20-HS version is less than 1.5.0.19.00
  • OR Jre15.JRE15-PA20W version is less than 1.5.0.19.00
  • OR Jre15.JRE15-PA20W-HS version is less than 1.5.0.19.00
  • OR Jre15.JRE15-IPF32 version is less than 1.5.0.19.00
  • OR Jre15.JRE15-IPF32-HS version is less than 1.5.0.19.00
  • OR Jre15.JRE15-IPF64 version is less than 1.5.0.19.00
  • OR Jdk15.JDK15-PA20W version is less than 1.5.0.19.00
  • OR Jre15.JRE15-IPF64-HS version is less than 1.5.0.19.00
  • OR Jdk15.JDK15-COM version is less than 1.5.0.19.00
  • OR Jdk15.JDK15-PA20 version is less than 1.5.0.19.00
  • OR Criteria meets HP Security Bulletin HPSBUX02503 SSRT100019 rev.1
  • platforms
  • HP-UX B.11.31
  • OR HP-UX B.11.11
  • OR HP-UX B.11.23
  • AND filesets tests
  • Jdk14.JDK14-IPF32 version is less than 1.4.2.24.00
  • OR Jre14.JRE14-COM version is less than 1.4.2.24.00
  • OR Jdk14.JDK14-IPF64 version is less than 1.4.2.24.00
  • OR Jre14.JRE14-PA11 version is less than 1.4.2.24.00
  • OR Jdk14.JDK14-PA11 version is less than 1.4.2.24.00
  • OR Jdk14.JDK14-PA20 version is less than 1.4.2.24.00
  • OR Jre14.JRE14-PA11-HS version is less than 1.4.2.24.00
  • OR Jre14.JRE14-PA20 version is less than 1.4.2.24.00
  • OR Jdk14.JDK14-PA20W version is less than 1.4.2.24.00
  • OR Jre14.JRE14-PA20-HS version is less than 1.4.2.24.00
  • OR Jre14.JRE14-PA20W version is less than 1.4.2.24.00
  • OR Jre14.JRE14-PA20W-HS version is less than 1.4.2.24.00
  • OR Jre14.JRE14-IPF32 version is less than 1.4.2.24.00
  • OR Jre14.JRE14-IPF64-HS version is less than 1.4.2.24.00
  • OR Jre14.JRE14-IPF32-HS version is less than 1.4.2.24.00
  • OR Jre14.JRE14-IPF64 version is less than 1.4.2.24.00
  • OR Jdk14.JDK14-COM version is less than 1.4.2.24.00
  • OR Criteria meets HP Security Bulletin HPSBUX02503 SSRT100019 rev.1
  • platforms
  • HP-UX B.11.11
  • OR HP-UX B.11.23
  • OR HP-UX B.11.31
  • AND filesets tests
  • Jdk60.JDK60-PA20 version is less than 1.6.0.06.00
  • OR Jre60.JRE60-COM version is less than 1.6.0.06.00
  • OR Jdk60.JDK60-PA20W version is less than 1.6.0.06.00
  • OR Jre60.JRE60-IPF32 version is less than 1.6.0.06.00
  • OR Jre60.JRE60-IPF32-HS version is less than 1.6.0.06.00
  • OR Jre60.JRE60-IPF64 version is less than 1.6.0.06.00
  • OR Jre60.JRE60-IPF64-HS version is less than 1.6.0.06.00
  • OR Jre60.JRE60-PA20 version is less than 1.6.0.06.00
  • OR Jre60.JRE60-PA20-HS version is less than 1.6.0.06.00
  • OR Jre60.JRE60-PA20W version is less than 1.6.0.06.00
  • OR Jre60.JRE60-PA20W-HS version is less than 1.6.0.06.00
  • OR Jdk60.JDK60-IPF32 version is less than 1.6.0.06.00
  • OR Jdk60.JDK60-IPF64 version is less than 1.6.0.06.00
  • OR Jdk60.JDK60-COM version is less than 1.6.0.06.00
  • BACK