Wednesday, October 24, 2007 8:33 AM
cmosby
SANS Internet Storm Center - Vulnerability in JRE VM
Vulnerability in JRE VM
Published: 2007-10-23,
Last Updated: 2007-10-23 23:34:55 UTC
by Adrien de Beaupre (Version: 1)
A vulnerability in the Virtual Machine of the Java Runtime Environment may allow an untrusted applet to elevate its privileges. For example, an applet may grant itself permissions to read and write local files or execute local applications that are accessible to the user running the untrusted applet.
Solution, upgrade.
From the Sun advisory.
Cheers,
Adrien de Beaupré
Bell Canada
Source: SANS Internet Storm Center; Cooperative Network Security Community - Internet Security - isc
Filed under: Internet Applications, Security