Intrusion Prevention

Oracle.Java.RE.TTF.Font.Glyphlterator.Heap.Memory.Corruption

Description

This indicates an attack attempt to exploit a Memory Corruption Vulnerability in Oracle Java Runtime Environment.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted TTF file. Successful exploitation could result in denial of service conditions on a targeted system.

Affected Products

Java SE version 7u211
Java SE version 8u202

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2019-06-06	14.627	Modified	Severity:medium:high
2019-05-07	14.608	Modified	Default_action:pass:drop
2019-04-24	14.599	New

References

46723

ID	47792
Created	Apr 24, 2019
Updated	Apr 17, 2023
CVE ID
Risk
Exploit Prediction Score	4.74%
Default Action	drop
Active
Affected OS	Windows, Linux
Affected App	Oracle
Profile Type	BufferErrors

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

Oracle.Java.RE.TTF.Font.Glyphlterator.Heap.Memory.Corruption

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

References

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

Oracle.Java.RE.TTF.Font.Glyphlterator.Heap.Memory.Corruption

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

References

Threat Intelligence
Center