Sun Alert 238628 Security Vulnerabilities in the Java Runtime Environment related to the processing of XML Data
By security on Jul 07, 2008
A vulnerability in the Java Runtime Environment related to the processing of XMLdata may allow unauthorized access to certain URL resources (such assome files and web pages) or a Denial of Service (DoS) condition to becreated on the system running the JRE.
For this vulnerability to be exploited, the JAX-WS client or service in a trusted application needs to process XML data that contains malicious content. This vulnerability cannot be exploited through an untrusted applet or untrusted Java Web Start application.
A second vulnerability in the Java Runtime Environment with processingXML data may allow an untrusted applet or application that isdownloaded from a website unauthorized access to certain URL resources(such as some files and web pages).