Sun.JRE.MixerSequencer.Invalid.Array.Index.Code.Execution

description-logoDescription

This indicates an attack attempt to exploit a Remote Code Execution vulnerability in Oracle Java JRE.
The vulnerability, which is located in the "MixerSequencer" component, can be exploited through the loading of a malicious MIDI sound file. It may allow remote attackers to execute arbitrary code in the context of the application.

affected-products-logoAffected Products

Sun SDK up to 1.4.2.26
Sun JRE up to 1.6.0.19

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply latest patches from the vendor.
http://www.oracle.com/technetwork/topics/security/javacpumar2010-083341.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)