The host is installed with Sun JDK or JRE 6 Update 10 or earlier and is prone to an multiple unspecified vulnerabilities. The flaws are present in the application, which fails to handle vectors related to access to inner classes in the (1) JAX-WS and (2) JAXB packages. Successful exploitation could allow applications to gain privileges.