Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (crash) via an image with crafted raster parameters, which triggers (1) an out-of-bounds read or (2) memory corruption in the JVM, as exploited in the wild in February 2013.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Oracle Java SE 2D组件远程代码执行漏洞
Vulnerability Description
Oracle Java SE是美国甲骨文(Oracle)公司的一套标准版Java平台,用于开发和部署桌面、服务器以及嵌入设备和实时环境中的Java应用程序。 Oracle Java SE 7 Update 15和较早版本,6 Update 41和较早版本,5.0 Update 40和较早版本中的2D组件中存在漏洞。通过触发在JVM中读取或写入任意内存的向量,远程攻击者利用该漏洞执行任意代码或导致拒绝服务(崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A