Name: CVE-2008-5346 Status: Candidate URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5346 Reference: SUNALERT:246386 Reference: URL:http://sunsolve.sun.com/search/document.do?assetkey=1-26-246386-1 Unspecified vulnerability in Java Runtime Environment (JRE) for Sun JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.2_18 and earlier; and SDK and JRE 1.3.1_23 or earlier allows untrusted applets and applications to read arbitrary memory via a crafted ZIP file.
Another mention of this issue: http://secunia.com/advisories/32991/
This issue has been addressed in following products: Extras for RHEL 3 Extras for RHEL 4 Extras for Red Hat Enterprise Linux 5 Via RHSA-2009:0445 https://rhn.redhat.com/errata/RHSA-2009-0445.html
This issue has been addressed in following products: Red Hat Network Satellite Server v 5.2 Via RHSA-2009:0466 https://rhn.redhat.com/errata/RHSA-2009-0466.html