CVE-2009-2674

Description

Integer overflow in javaws.exe in Sun Java Web Start in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 allows context-dependent attackers to execute arbitrary code via a crafted JPEG image that is not properly handled during display to a splash screen, which triggers a heap-based buffer overflow.

Related Vulnerabilities

platform vulnerability
CVE-2009-2674 openjdk-6
CVE-2009-2674