The host is installed with Oracle Java SE 5.0 update 22 or 6 update 17 and is prone to information disclosure vulnerability. A flaw is present in the applications, which does not properly handle unspecified vectors. Successful exploitation allows remote attackers to gain privileges.