Sun Alert 238628 Security Vulnerabilities in the Java Runtime Environment related to the processing of XML Data

Product: Sun Java Standard Edition (Java SE)

A vulnerability in the Java Runtime Environment related to the processing of XMLdata may allow unauthorized access to certain URL resources (such assome files and web pages) or a Denial of Service (DoS) condition to becreated on the system running the JRE.

For this vulnerability to be exploited, the JAX-WS client or service in a trusted application needs to process XML data that contains malicious content. This vulnerability cannot be exploited through an untrusted applet or untrusted Java Web Start application.

A second vulnerability in the Java Runtime Environment with processingXML data may allow an untrusted applet or application that isdownloaded from a website unauthorized access to certain URL resources(such as some files and web pages).

State: Resolved
First released: 08-Jul-2008
Comments:

Post a Comment:
  • HTML Syntax: NOT allowed
About

This blog provides security vulnerability fix notifications relevant to third party software components distributed and supported as part of Oracle Products.
Summarized version of this blog is available as a mapping of CVEs and solutions.

Search

Archives
« April 2014
SunMonTueWedThuFriSat
  
2
3
4
5
6
7
8
9
10
11
12
13
14
16
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today