Oval Definition:	oval:org.mitre.oval:tst:78109
Comment: Determine if the version of Java Runtime Environment is greater than or equal to 1.6.0:update_10 and less than 1.6.0:update_20 Type: file_test Namespace: windows Check_Existence: at_least_one_exists Check: at least one State Operator: AND References Object: oval:org.mitre.oval:obj:24226 State: oval:org.mitre.oval:ste:17346 State: oval:org.mitre.oval:ste:17967 Referencing Definitions Definition ID Class Title Last Modified oval:org.mitre.oval:def:14090 V Argument injection vulnerability in the URI handler in (a) Java NPAPI plugin and (b) Java Deployment Toolkit in Java 6 Update 10, 19, and other versions, when running on Windows and possibly on Linux, allows remote attackers to execute arbitrary code via the (1) -J or (2) -XXaltjvm argument to javaws.exe, which is processed by the launch method. NOTE: some of these details are obtained from third party information. 2014-08-18
BACK