The host is installed with Oracle Java SE 5.0 before Update 20 or 6 before Update 15 and is prone to information disclosure vulnerability. A flaw is present in the applications, which does not prevent access to java.lang.System properties by (1) untrusted applets and (2) Java Web Start applications. Successful exploitation allows context-dependent attackers to obtain sensitive information by readi ...