Sun Java JRE / JDK / Web Start multiple security vulnerabilities

2009-04-23T00:00:00
ID SECURITYVULNS:VULN:9483
Type securityvulns
Reporter BUGTRAQ
Modified 2009-04-23T00:00:00

Description

JNLP may overwrite system properties java.home java.ext.dirs user.home Heap overflow and integer overflow on TrueType fonts parsing, memory corruption on GIF parsing, integer overflow on Pack200 decompression. Multiple sendbox protection bypass vulnerabilities.