The Third Party Vulnerability Resolution Blog covers CVEs and patches in Systems product suite.

Sun Alert 246386 A Security Vulnerability in Java Runtime Environment (JRE) With Parsing of Zip Files May Allow Reading of Arbitrary Memory Locations

Guest Author
Product: Java 2 Platform, Standard Edition 5.0

A security vulnerability in the Java Runtime Environment (JRE) withparsing zip files may allow an untrusted applet or application to readarbitrary memory locations in the process that the applet orapplication is running in.

Sun acknowledges, with thanks, the University of Oulu for bringing thisissue to our attention.

State: Resolved
First released: 03-Dec-2008

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.