The Third Party Vulnerability Resolution Blog covers CVEs and patches in Systems product suite.

Sun Alert 246366 Security Vulnerabilities in the Java Runtime Environment (JRE) JAX-WS and JAXB Packages may Allow Privileges to be Escalated

Guest Author
Product: Java Platform, Standard Edition 6 (Java SE 6)

Security vulnerabilities in the JAX-WS and JAXB packages in theJava Runtime Environment (JRE) where internal classes can be accessedmay allow an untrusted applet or application to escalate privileges.For example, an untrusted applet may grant itself permissions to readand write local files or execute local applications that are accessibleto the user running the untrusted applet.

Sun acknowledges, with thanks, Adam Gowdiak for bringing these issuesto our attention.

State: Resolved
First released: 03-Dec-2008

Be the first to comment

Comments ( 0 )
Please enter your name.Please provide a valid email address.Please enter a comment.CAPTCHA challenge response provided was incorrect. Please try again.