Oracle Java SE GSUB FeatureCount Buffer Overflow Vulnerability
Gravité: : Critique
Date du conseil: 21 juillet 2015
Description
Oracle Java fails to check the FeatureCount value in the Truetype font leading to buffer overflow. Successful exploitation would cause memory corruption that may lead to arbitrary code execution in the security context of the logged in user, or terminate the application resulting in a denial of service condition.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1005493