Oval Definition:	oval:org.mitre.oval:def:6505
Revision Date: 2010-01-11 Version: 2 Title: Sun Java Runtime Environment TrueType font integer overflow Description: Integer overflow in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.2_18 and earlier; and SDK and JRE 1.3.1_23 and earlier might allow remote attackers to execute arbitrary code via a crafted TrueType font file, which triggers a heap-based buffer overflow. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2008-5357 Platform(s): VMWare ESX Server 3.5 Product(s): Definition Synopsis AND VMware ESX Server 3.5.0 is installed AND Patch ESX350-200910403-SG is not installed
BACK