CVE-2008-1187

Name of the Vulnerable Software and Affected Versions Sun Java Runtime Environment (JRE) and JDK versions 6 Update 4 and earlier Sun Java Runtime Environment (JRE) and JDK versions 5.0 Update 14 and earlier Sun Java Runtime Environment (JRE) and JDK versions 1.4.2 16 and earlier

Description The issue allows remote attackers to cause a denial of service, potentially leading to a crash, and may also enable the execution of arbitrary code. This is related to XSLT transforms, but the specific vectors are unknown.

Recommendations For versions 6 Update 4 and earlier, update to a version later than Update 4 to resolve the issue. For versions 5.0 Update 14 and earlier, update to a version later than Update 14 to resolve the issue. For versions 1.4.2 16 and earlier, update to a version later than 1.4.2 16 to resolve the issue.