The vulnerability of the Java Development Kit application development tool allows a local user to replace any files they choose.

A vulnerability in the Java Development Kit application development tool, related to errors in the unpack::redirectstdio function in unpack.cpp within unpack200 in OpenJDK, Oracle Java SE, JRockit, and Java SE Embedded, arises due to the insecure creation of temporary files when it is impossible ...

OpenJDK Jar200 Decompression buffer overflow (6755943)

Integer overflow in the JAR unpacking utility unpack200 in the unpack library unpack.dll in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier, and JDK and JRE 5.0 Update 16 and earlier, allows untrusted applications and applets to gain privileges via a Pack200 compressed JA...