Microsoft Java Virtual Machine 3802 Series - Bytecode Verifier

source: https://www.securityfocus.com/bid/6221/info The Microsoft Java virtual machine implementation contains a vulnerability that may allow for malicious Java applets to escape the security sandbox. An applet constructed at the bytecode-level may be able to perform some illegal operations. If...

Sun/Netscape Java Virtual Machine1.x - Bytecode Verifier

source: https://www.securityfocus.com/bid/6224/info A vulnerability in the Sun and Netscape Java Virtual Machine has been reported. The vulnerability is related to the bytecode verifier, a component of the Java compiler that ensures legal structure of Java instructions. According to the report, i...

Microsoft Java implementation JDBC functions do not properly validate parameters

Overview The Java Database Connectivity JDBC classes of Microsoft's Java virtual machine VM contain functions that do not properly validate parameters. A malicious Java applet can exploit this vulnerability to crash programs on the client system. Description Microsoft's Java VM is installed on...

Sun Java Virtual Machine 1.2.2/1.3.1 - Segmentation Violation

source: https://www.securityfocus.com/bid/3992/info Java programs run in an intepreted environment, the Java Virtual Machine JVM. Sun has provided a reference JVM implementation for multiple platforms, including Solaris, Windows and Linux. It is possible for a maliciously constructed, valid java...

Sun Java Virtual Machine 1.2.21.3.1 - Segmentation Violation

Sun Java Virtual Machine 1.2.21.3.1 - Segmentation Violation source: https://www.securityfocus.com/bid/3992/info Java programs run in an intepreted environment, the Java Virtual Machine JVM. Sun has provided a reference JVM implementation for multiple platforms, including Solaris, Windows and...

CVE-2001-0326

Oracle Java Virtual Machine JVM for Oracle 8.1.7 and Oracle Application Server 9iAS Release 1.0.2.0.1 allows remote attackers to read arbitrary files via the .jsp and .sqljsp file extensions when the server is configured to use the FilePermission...

CVE-2001-0326

The CVE-2001-0326 entry concerns Oracle Java Virtual Machine (JVM) for Oracle 8.1.7 and Oracle Application Server 9iAS Release 1.0.2.0.1. Description in connected sources indicates an information disclosure vulnerability: remote attackers could read arbitrary files via the .jsp and .sqljsp extens...

CVE-2001-0326

Oracle Java Virtual Machine JVM for Oracle 8.1.7 and Oracle Application Server 9iAS Release 1.0.2.0.1 allows remote attackers to read arbitrary files via the .jsp and .sqljsp file extensions when the server is configured to use the FilePermission...

CVE-2000-1117

The Extended Control List ECL feature of the Java Virtual Machine JVM in Lotus Notes Client R5 allows malicious web site operators to determine the existence of files on the client by measuring delays in the execution of the getSystemResource method...

PT-2001-1156 · Ibm · Lotus Notes Client

Name of the Vulnerable Software and Affected Versions: Lotus Notes Client R5 Description: The issue concerns the Extended Control List ECL feature of the Java Virtual Machine JVM in the affected software. It allows malicious web site operators to determine the existence of files on the client by...

CVE-2000-1117

The Extended Control List ECL feature of the Java Virtual Machine JVM in Lotus Notes Client R5 allows malicious web site operators to determine the existence of files on the client by measuring delays in the execution of the getSystemResource method...

Дырка в виртуальной машине Java клиента Lotus Notes

Дырка в виртулаьной машине позволяет проверять наличие файла на клиентской машине...

Lotus Notes Client R5 File Existence Verification Vulnerability

Description Lotus Notes Client R5 is a messaging and collaboration tool that contains a built in web browser. The web browser implements a Java Virtual Machine VM designed specifically for Lotus Notes. A security vulnerability exists in the Execution Control List ECL feature within the Java VM th...

CVE-1999-0440

The byte code verifier component of the Java Virtual Machine JVM allows remote execution through malicious web pages...

CVE-1999-0440

Technical details are not publicly available in the provided documents. Monitor for updates.

[SECURITY] New version of Netscape Communicator/Navigator released

Package: netscape communicator, navigator Vulnerability: remote exploit Debian-specific: no Existing Netscape Communicator/Navigator packages contain the following vulnerabilities: 1. Netscape Communicator JPEG-Comment Heap Overwrite Vulnerability - executes arbitrary code in the comment field of...

FreeBSD-SA-00:39.netscape

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:39 Security Advisory FreeBSD, Inc. Topic: Two vulnerabilities in Netscape Category: ports Module: netscape Announced: 2000-08-28 Credits: Solar Designer Vulnerability 1...

CVE-2000-0132

Microsoft Java Virtual Machine allows remote attackers to read files via the getSystemResourceAsStream function...

CVE-2000-0132

Microsoft Java Virtual Machine allows remote attackers to read files via the getSystemResourceAsStream function...

Microsoft Virtual Machine 2000 - Series3000 Series getSystemResource

Microsoft Virtual Machine 2000 - Series3000 Series getSystemResource source: https://www.securityfocus.com/bid/957/info Microsoft's Java Virtual Machine will allow the reading of local file information by a remote Java application. This can be done two ways: 1: Via the getSystemResourceAsStream...