Sun.Java.Runtime.Pack200.Integer.Overflow

description-logoDescription

This indicates an attack attempt against an integer-overflow vulnerability in the Sun Java Runtime Environment software.
The vulnerability is caused by an error when the vulnerable software handles a malicious JAR file with crafted Pack200 headers. It allows a remote attacker to execute arbitrary code.

affected-products-logoAffected Products

HP JDK and JRE version 6.0.03 and prior
HP JDK and JRE version 5.0.16 and prior
HP Java SDK and RTE version 1.4.2.22 and prior

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Update to the latest versions:

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)