Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 affecting confidentiality, integrity, and availability via 2D vectors

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 affecting confidentiality, integrity, and availability via 2D vectors

CVE-2016-3443 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. NOTE: the previous information is from the April 2016 CPU. Oracle has not commented on third-party claims that this issue allows remote attackers to obtain sensitive information via crafted font data, which triggers an out-of-bounds read.

Learn more about our Web Application Penetration Testing UK.