Intrusion Prevention

Sun.Java.Runtime.Environment.JAR.File.Buffer.Overflow

Description

This indicates an attack attempt against a buffer-overflow vulnerability in Sun Java Runtime Environment software.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted Java Archive (JAR) file. It allows a remote attacker to execute arbitrary code.

Affected Products

Sun JDK and JRE 6 Update 10 and prior
Sun JDK and JRE 5.0 Update 16 and prior
Sun SDK and JRE 1.4.2_18 and prior
Sun SDK and JRE 1.3.1_23 and prior

Impact

System Compromise

Recommended Actions

Apply the patch available at the following web site:
http://sunsolve.sun.com/search/document.do?assetkey=1-66-244990-1

CVE References

CVE-2008-5354