The host is installed with Oracle Java SE 7 through update 11, 6 through Update 38, 5.0 through Update 38, or 1.4.2_40 or earlier and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to handle vectors related to AWT. Successful exploitation could allow attackers to affect confidentiality and integrity