X

The Third Party Vulnerability Resolution Blog covers CVEs and patches in Systems product suite.

Sun Alert 103079 Security Vulnerability in Java Runtime Environment With Applet Caching May Allow Network Access Restrictions to be Circumvented

Guest Author
Product: Java 2 Platform, Standard Edition

A vulnerability in the Java Runtime Environment (JRE) with applet caching may allow an untrusted applet that is downloaded from a malicious website to make network connections to network services on machines other than the one that the applet was downloaded from. This may allow network resources (such as web pages) and vulnerabilities (that exist on these network services) which are not otherwise normally accessible to be accessed or exploited.

Sun acknowledges with thanks, Billy Rios for bringing this issue to our attention.

This issue has been reported at:

http://conference.hitb.org/hitbsecconf2007kl/?page_id=148

Avoidance: Patch, Upgrade, Workaround
State: Workaround
First released: 03-Oct-2007

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.