Intrusion Prevention

Sun.JRE.GIF.Image.Handling.Heap.Overflow

Description

This indicates a possible exploit of a heap-overflow vulnerability in Sun JDK and Java Runtime Environment (JRE).
Remote attackers may exploit this vulnerability via a GIF image that contains a block with a 0-width field. A successful exploit may allow applets to gain privileges.

Affected Products

Sun Java 2 Standard Edition SDK 1.5 _07
Sun Java 2 Standard Edition SDK 1.5 _03
Sun Java 2 Standard Edition SDK 1.5 _02
Sun Java 2 Standard Edition SDK 1.5 _01
Sun Java 2 Standard Edition SDK 1.5
Sun Java 2 Standard Edition SDK 1.4.2 _08
Sun Java 2 Standard Edition SDK 1.4.2 _07
Sun Java 2 Standard Edition SDK 1.4.2 _06
Sun Java 2 Standard Edition SDK 1.4.2 _05
Sun Java 2 Standard Edition SDK 1.4.2 _04
Sun Java 2 Standard Edition SDK 1.4.2 _03
Sun Java 2 Standard Edition SDK 1.4.2 _02
Sun Java 2 Standard Edition SDK 1.4.2 _01
Sun Java 2 Runtime Environment 1.5 _06
Sun Java 2 Runtime Environment 1.5 _05
Sun Java 2 Runtime Environment 1.5 _04
Sun Java 2 Runtime Environment 1.5 _03
Sun Java 2 Runtime Environment 1.5 _02
Sun Java 2 Runtime Environment 1.5 _01
Sun Java 2 Runtime Environment 1.4.2 _11
Sun Java 2 Runtime Environment 1.4.2 _10
Sun Java 2 Runtime Environment 1.4.2 _09
Sun Java 2 Runtime Environment 1.4.2 _08
Sun Java 2 Runtime Environment 1.4.2 _07
Sun Java 2 Runtime Environment 1.4.2 _06
Sun Java 2 Runtime Environment 1.4.2 _05
Sun Java 2 Runtime Environment 1.4.2 _04
Sun Java 2 Runtime Environment 1.4.2 _03
Sun Java 2 Runtime Environment 1.4.2 _02
Sun Java 2 Runtime Environment 1.4.2 _01
Sun Java 2 Runtime Environment 1.3.1 _18
Sun Java 2 Runtime Environment 1.3.1 _17
Sun Java 2 Runtime Environment 1.3.1 _16
Sun Java 2 Runtime Environment 1.3.1 _15
Sun Java 2 Runtime Environment 1.3.1 _08
Sun Java 2 Runtime Environment 1.3.1 _04
Sun Java 2 Runtime Environment 1.3.1 _01a
Sun Java 2 Runtime Environment 1.3.1 _01
Sun Java 2 Runtime Environment 5.0.Update 9
Sun Java 2 Runtime Environment 5.0 Update 8
Sun Java 2 Runtime Environment 5.0 Update 7
Sun Java 2 Runtime Environment 5.0 Update 6
Sun Java 2 Runtime Environment 5.0 Update 5
Sun Java 2 Runtime Environment 5.0 Update 4
Sun Java 2 Runtime Environment 5.0 Update 3
Sun Java 2 Runtime Environment 5.0 Update 2
Sun Java 2 Runtime Environment 5.0 Update 1
Avaya Interactive Response 1.3
Avaya Interactive Response 2.0

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Sun Microsystems has released an advisory and updates to address these issues.
Sun Java 2 Runtime Environment 5.0 Update 6
* Sun 118666-10
* Sun 118667-10
* Sun 118668-10
* Sun 118669-10
Sun Java 2 Runtime Environment 5.0 Update 1
* Sun 118666-10
* Sun 118667-10
* Sun 118668-10
* Sun 118669-10
Sun Java 2 Runtime Environment 5.0 Update 3
* Sun 118666-10
* Sun 118667-10
* Sun 118668-10
* Sun 118669-10
Sun Java 2 Runtime Environment 5.0 Update 2
* Sun 118666-10
* Sun 118667-10
* Sun 118668-10
* Sun 118669-10
Sun Java 2 Runtime Environment 5.0 Update 8
* Sun 118666-10
* Sun 118667-10
* Sun 118668-10
* Sun 118669-10
Sun Java 2 Runtime Environment 5.0 Update 7
* Sun 118666-10
* Sun 118667-10
* Sun 118668-10
* Sun 118669-10
Sun Java 2 Runtime Environment 5.0 Update 4
* Sun 118666-10
* Sun 118667-10
* Sun 118668-10
* Sun 118669-10
Sun Java 2 Runtime Environment 5.0 Update 5
* Sun 118666-10
* Sun 118667-10
* Sun 118668-10
* Sun 118669-10
Sun Java 2 Runtime Environment 5.0.Update 9
* Sun 118666-10
* Sun 118667-10
* Sun 118668-10
* Sun 118669-10

Coverage

IPS (Regular DB)
IPS (Extended DB)

ID	13827
Created	Jan 31, 2007
Updated	Feb 24, 2022
Risk
CVE ID	CVE-2007-0243
Exploit Prediction Score	42.36%
Default Action	drop
Active
Affected OS	All
Affected App	SUN

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Intrusion Prevention

Sun.JRE.GIF.Image.Handling.Heap.Overflow

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

Intrusion Prevention

Sun.JRE.GIF.Image.Handling.Heap.Overflow

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

Threat Intelligence
Center