392 matches found
Microsoft Virtual Machine - Arbitrary Java Codebase Execution
source: https://www.securityfocus.com/bid/1812/info An attacker may gain read access on remote systems by specifying a custom codebase in a Java applet, and delivering to the victims via HTML email or a website. Any arbitrary codebase can be referenced by a java applet that was loaded by an tag i...
CVE-2000-0676
Netscape Communicator and Navigator 4.04 through 4.74 allows remote attackers to read arbitrary files by using a Java applet to open a connection to a URL using the "file", "http", "https", and "ftp" protocols, as demonstrated by Brown Orifice...
CVE-2000-0676
CVE-2000-0676 affects Netscape Communicator/Navigator 4.04–4.74. An unsigned Java applet could read local files (e.g., file://) and connect to remote resources via file/http/https/ftp URLs, enabling data exfiltration via Brown Orifice. Root cause is an implementation error in the JRE bundled with...
CVE-1999-0142
The Java Applet Security Manager implementation in Netscape Navigator 2.0 and Java Developer's Kit 1.0 allows an applet to connect to arbitrary hosts...
Очередная уязвимость между фреймами в IE
Используя JAVA-апплет можно выполнить JAVASCRIPT в контексте локального документа, таким образом можно получить доступ к локальному файлу...
CVE-2000-0162
Technical details (affected product/version, exploitability, and mitigations) are not publicly available in the provided documents. Monitor for updates from official advisories to confirm impact and remediation guidance.
CVE-2000-0162
The Microsoft virtual machine VM in Internet Explorer 4.x and 5.x allows a remote attacker to read files via a malicious Java applet that escapes the Java sandbox, aka the "VM File Reading" vulnerability...
CVE-2000-0162
The Microsoft virtual machine VM in Internet Explorer 4.x and 5.x allows a remote attacker to read files via a malicious Java applet that escapes the Java sandbox, aka the "VM File Reading" vulnerability...
microsoft.vm.java.txt
Jan 28, 2000 Translator's note: We announce another security hole of Microsoft Virtual Machine$B!!B Microsoft VM for Java, including the latest version. This is the translation version of the warning note written in Japanese by Dr. Hiromitsu Takagi posted at the Java House Mailing List, a Japanes...
Compaq Java Applet for Presario SpawnApp - Code Execution
source: https://www.securityfocus.com/bid/557/info Some Compaq computers come with a Java applet called SpawnApp. This applet is used to run Compaq diagnostic utilities from the local hard drive when certain Compaq websites are viewed. The problem is that the applet can run any program, and can b...
Compaq Java Applet for Presario SpawnApp - Code Execution
Compaq Java Applet for Presario SpawnApp - Code Execution source: https://www.securityfocus.com/bid/557/info Some Compaq computers come with a Java applet called SpawnApp. This applet is used to run Compaq diagnostic utilities from the local hard drive when certain Compaq websites are viewed. The...
CVE-1999-0142
The Java Applet Security Manager implementation in Netscape Navigator 2.0 and Java Developer's Kit 1.0 allows an applet to connect to arbitrary hosts...