CVE-2008-5347: Multiple unspecified vulnerabilities in Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier allow

CVE-2008-5347 is a security flaw in Sun's Java Runtime Environment (JRE, the software that runs Java programs) version 6 Update 10 and earlier that allows untrusted applets (small Java programs) and applications to gain elevated privileges (special access rights) by exploiting weaknesses in the JAX-WS and JAXB packages (libraries used for web services and data processing). The vulnerability works through vectors (methods of attack) related to access to inner classes in these packages.