Oracle Java SE and Java for Business Remote Code Execution Vulnerability

Oracle Java SE and Java for Business Remote Code Execution Vulnerability

Oracle Java SE and Java for Business are prone to a remote code-execution vulnerability in Java Runtime Environment. This issue affects the Sound subcomponent.

To exploit this issue, an attacker must entice an unsuspecting user into visiting a specially crafted webpage that contains a malicious Applet or into opening a specially crafted file.

An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions.

This vulnerability affects the following supported versions:
6 Update 23, 5.0 Update 27, 1.4.2_29