iDefense Security Advisory 03.25.09 – Remote exploitation of an integer overflow vulnerability in Sun Microsystems Inc.’s Java Runtime Environment (JRE) could allow an attacker to execute arbitrary code with the privileges of the current user. The vulnerability occurs during decompression when, to calculate the size of a heap buffer, the code manipulates several integers in the file. The bounds of these values are not checked, and the arithmetic operations can overflow. This results in an undersized buffer being allocated, which leads to a heap-based buffer overflow. iDefense has confirmed the existence of this vulnerability in Sun Microsystem Inc.’s JRE version 1.6.0_11 for Windows and Linux.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/76133/03.25.09-5.txt
Source: https://packetstormsecurity.com/files/76133/iDEFENSE-Security-Advisory-2009-03-25.5.html