java is vulnerable to arbitrary code execution. The vulnerability exists as the flaws in the CORBA implementation could allow an attacker to execute arbitrary code by misusing permissions granted to certain system objects.
h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c02616748
lists.fedoraproject.org/pipermail/package-announce/2010-October/049455.html
lists.fedoraproject.org/pipermail/package-announce/2010-October/049528.html
lists.fedoraproject.org/pipermail/package-announce/2010-October/049702.html
lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html
marc.info/?l=bugtraq&m=134254866602253&w=2
secunia.com/advisories/41972
secunia.com/advisories/42377
secunia.com/advisories/42974
security.gentoo.org/glsa/glsa-201406-32.xml
support.avaya.com/css/P8/documents/100114315
support.avaya.com/css/P8/documents/100114327
support.avaya.com/css/P8/documents/100123193
www.hitachi.co.jp/Prod/comp/soft1/security/info/vuls/HS10-030/index.html
www.oracle.com/technetwork/topics/security/cpujan2011-194091.html
www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html
www.redhat.com/security/updates/classification/#important
www.redhat.com/support/errata/RHSA-2010-0768.html
www.redhat.com/support/errata/RHSA-2010-0770.html
www.redhat.com/support/errata/RHSA-2010-0865.html
www.securityfocus.com/archive/1/516397/100/0/threaded
www.securityfocus.com/bid/43994
www.ubuntu.com/usn/USN-1010-1
www.vmware.com/security/advisories/VMSA-2011-0003.html
www.vupen.com/english/advisories/2010/3086
access.redhat.com/errata/RHSA-2010:0865
access.redhat.com/kb/docs/DOC-20491
bugzilla.redhat.com/show_bug.cgi?id=639880
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12189
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12449