Integer signedness error in the window drawing implementation in Apple Java for Mac OS X 10.5 before Update 7 and Java for Mac OS X 10.6 before Update 2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted applet.
Max CVSS
6.8
EPSS Score
0.90%
Published
2010-05-21
Updated
2010-05-24
Stack-based buffer overflow in the Java Web Start command launcher in Java for Mac OS X 10.5 before Update 5 allows attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors.
Max CVSS
6.8
EPSS Score
0.24%
Published
2009-09-09
Updated
2009-09-19
2 vulnerabilities found