Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 affecting confidentiality, integrity, and availability via 2D vectors
CVE-2016-3443 · HIGH Severity
AV:N/AC:L/AU:N/C:C/I:C/A:C
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77 allows remote attackers to affect confidentiality, integrity, and availability via vectors related to 2D. NOTE: the previous information is from the April 2016 CPU. Oracle has not commented on third-party claims that this issue allows remote attackers to obtain sensitive information via crafted font data, which triggers an out-of-bounds read.
Learn more about our Web Application Penetration Testing UK.