Sun.Java.Runtime.Pack200.Integer.Overflow
Description
This indicates an attack attempt against an integer-overflow vulnerability in the Sun Java Runtime Environment software.
The vulnerability is caused by an error when the vulnerable software handles a malicious JAR file with crafted Pack200 headers. It allows a remote attacker to execute arbitrary code.
Affected Products
HP JDK and JRE version 6.0.03 and prior
HP JDK and JRE version 5.0.16 and prior
HP Java SDK and RTE version 1.4.2.22 and prior
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Update to the latest versions:
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |