Oval Definition:	oval:org.mitre.oval:def:20649
Revision Date: 2014-01-20 Version: 6 Title: VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX Description: The Double.parseDouble method in Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, 5.0 Update 27 and earlier, and 1.4.2_29 and earlier, as used in OpenJDK, Apache, JBossweb, and other products, allows remote attackers to cause a denial of service via a crafted string that triggers an infinite loop of estimations during conversion to a double-precision binary floating-point number, as demonstrated using 2.2250738585072012e-308. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2010-4476 Platform(s): VMWare ESX Server 4.0 VMWare ESX Server 4.1 Product(s): Definition Synopsis Patch ESX410-201110201-SG is not installed VMware ESX Server 4.1 is installed AND Patch ESX410-201110201-SG is not installed OR Patch ESX400-201111201-SG is not installed VMware ESX Server 4.0 is installed AND Patch ESX400-201111201-SG is not installed
BACK