The host is installed with Oracle Java JDK and JRE 5.0 Update 16 or earlier or 1.4.x before 1.4.2_18 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to handle an untrusted application. Successful exploitation could allow attackers to create or delete arbitrary files via an untrusted application.