Oracle Java SE GSUB FeatureCount Buffer Overflow Vulnerability
Severity: : Critical
Advisory Date: 21 de июля de 2015
DESCRIPTION
Oracle Java fails to check the FeatureCount value in the Truetype font leading to buffer overflow. Successful exploitation would cause memory corruption that may lead to arbitrary code execution in the security context of the logged in user, or terminate the application resulting in a denial of service condition.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005493