CVE-2008-3105: Unspecified vulnerability in the JAX-WS client and service in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update

CVE-2008-3105 is a security flaw in JAX-WS (Java API for XML Web Services, a Java tool for building web services) within Sun's Java Runtime Environment version 6 Update 6 and earlier that allows attackers to access restricted URLs or crash the system through malicious XML (a data format) processing. The exact details of how the vulnerability works are not fully described, but it affects both the client and server components of the JAX-WS system.