Vulnerability Note VU#388289

Sun Microsystems Java GIF image processing buffer overflow

Original Release date: 17 Jan 2007 | Last revised: 16 May 2007

Overview

A vulnerability in the Sun Java Runtime Environment may allow an attacker to execute arbitrary code on a vulnerable system.

Description

The Sun Java Runtime Environment (JRE) allows users to run Java applications in a browser or as standalone programs. Sun has made the JRE available for multiple operating systems. When a GIF image with a specified width of 0 is processed, the Sun JRE will overwrite memory contents, which can cause pointer corruption.

Note that exploit code for this vulnerability is publicly available.

Impact

A remote unauthenticated attacker may be able to execute arbitrary code.

Solution

Apply an update
Per Sunsolve document 102760, this issue is addressed in

  • JDK and JRE 5.0 Update 10 or later
  • SDK and JRE 1.4.2_13 or later
  • SDK and JRE 1.3.1_19 or later

Disable Java

Disable Java in your web browser, as specified in the Securing Your Web Browser document.

Systems Affected (Learn More)

VendorStatusDate NotifiedDate Updated
Sun Microsystems, Inc.Affected-17 Jan 2007
Apple Computer, Inc.Unknown18 Jan 200718 Jan 2007
IBM eServerUnknown-13 Feb 2007
If you are a vendor and your product is affected, let us know.

CVSS Metrics (Learn More)

Group Score Vector
Base N/A N/A
Temporal N/A N/A
Environmental N/A N/A

References

Credit

Thanks to ZDI for reporting this vulnerability, who in turn credit an anonymous researcher.

This document was written by Will Dormann.

Other Information

  • CVE IDs: CVE-2007-0243
  • Date Public: 16 Jan 2007
  • Date First Published: 17 Jan 2007
  • Date Last Updated: 16 May 2007
  • Severity Metric: 31.47
  • Document Revision: 23

Feedback

If you have feedback, comments, or additional information about this vulnerability, please send us email.