Common Vulnerabilities and Exposures assigned an identifier CVE-2011-3387 to the following vulnerability: Name: CVE-2011-3387 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3387 Assigned: Reference: AIXAPAR:PM42551 Reference: https://www-304.ibm.com/support/docview.wss?uid=isg1PM42551 The class file parser in IBM Java 1.4.2 SR13 FP9 allows remote authenticated users to cause a denial of service (memory consumption or an infinite loop) via a crafted attribute length field in a class file, related to validation of a length field at the wrong time, a different vulnerability than CVE-2011-0311.
This flaw only affected FP9 and is fixed in FP10, which was made available via: https://rhn.redhat.com/errata/RHSA-2011-1159.html https://rhn.redhat.com/errata/RHSA-2011-1265.html