| Revision Date: | 2015-03-23 | Version: | 10 | | Title: | The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308. | | Description: | The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308. | | Family: | windows | Class: | vulnerability | | Status: | ACCEPTED | Reference(s): | CVE-2010-4476
| | Platform(s): | Microsoft Windows 2000
Microsoft Windows 7
Microsoft Windows 8
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Vista
Microsoft Windows XP
| Product(s): | Java Development Kit
Java Runtime Environment
| | Definition Synopsis | | Determine if the version of Java Development Kit is less than 1.6.0:update_24 and is greater than or equal to 1.6.0 Determine if the version of Java Development Kit is less than 1.6.0:update_24
AND Java SE Development Kit 6 is installed
OR Determine if the version of Java Runtime Environment is less than 1.6.0:update_24 and is greater than or equal to 1.6.0
Determine if the version of Java Runtime Environment is less than 1.6.0:update_24
AND Java SE Runtime Environment 6 is installed
OR Determine if the version of Java Runtime Environment is less than 1.5.0:update28 and is greater than or equal to 1.5.0
Determine if the version of Java Runtime Environment is less than 1.5.0:update28
AND Java SE Runtime Environment 5 is installed
OR Determine if the version of Java Development Kit is less than 1.5.0:update28 and is greater than or equal to 1.5.0
Determine if the version of Java Development Kit is less than 1.5.0:update28
AND Java SE Development Kit 5 is installed
|
|