Oval Definition:oval:org.mitre.oval:def:12225
Revision Date:2015-06-01Version:9
Title:Unspecified vulnerability in the 2D component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update and 25 and earlier versions
Description:Unspecified vulnerability in the 2D component in Oracle Java SE and Java for Business 6 Update 21, 5.0 Update and 25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2010 CPU. Oracle has not commented on claims from a reliable researcher that this is an integer overflow that leads to a buffer overflow via a crafted devs (device information) tag structure in a color profile.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2010-3566
Platform(s):Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Oracle Java SE
Definition Synopsis
  • Check if Java Development Kit is installed and version is less than or equal to 6.0.210.6
  • Java Development Kit is installed
  • AND Check if Java Development Kit version is less than or equal to 1.6.0_21 ( 6.0.210.6)
  • AND Java SE Development Kit 6 is installed
  • OR Check if Java Runtime Environment is installed and version is less than or equal to 6.0.210.6
  • Java Runtime Environment is installed
  • AND Check if Java Runtime Environment version is less than or equal to 1.6.0_21 (6.0.210.6)
  • AND Java SE Runtime Environment 6 is installed
    • BACK