CVE-2009-2674

CVE-2009-2674 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Integer overflow in javaws.exe in Sun Java Web Start in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 allows context-dependent attackers to execute arbitrary code via a crafted JPEG image that is not properly handled during display to a splash screen, which triggers a heap-based buffer overflow.

Learn more about our Web App Pen Testing.