Sun Java Runtime Environment Font Parsing Remote Privilege Escalation Vulnerability

Sun Java Runtime Environment Font Parsing Remote Privilege Escalation Vulnerability

References:

A Cross-browser, Cross-platform, Cross-architecture Bug in the JRE (John Heasman)
RHSA-2007:0956-3 - java-1.5.0-bea security update (RedHat)
Security update for IBMJava5-JRE,IBMJava5-SDK (SUSE)
Sun Java Homepage (Sun Microsystems)
Memory overwrites in JVM via malformed TrueType font (NGSSoftware Insight Security Research )
About the security content of Java Release 6 for Mac OS X 10.4 (Apple)
BEA07-177.00 Multiple Security Vulnerabilities in the Java Runtime Environment (BEA Systems)
RHSA-2007:1086-5 - java-1.4.2-bea security update (RedHat)
RHSA-2008:0100-4 java-1.4.2-bea security update (Red Hat)
RHSA-2008:0132-4 - java-1.4.2-ibm security update (Red Hat)
Sun Alert ID 103024 (Sun Microsystems)

Privacy Statement
Copyright 2010, SecurityFocus