CVE-2005-0223

The Software Development Kit SDK and Run Time Environment RTE 1.4.1 and 1.4.2 for Tru64 UNIX allows remote attackers to cause a denial of service Java Virtual Machine hang via object deserialization...

CVE-2004-2627

Java 2 Micro Edition J2ME does not properly validate bytecode, which allows remote attackers to escape the Kilobyte Virtual Machine KVM sandbox and execute arbitrary code...

CVE-2002-0865

A certain class that supports XML Extensible Markup Language in Microsoft Virtual Machine VM 5.0.3805 and earlier, probably com.ms.osp.ospmrshl, exposes certain unsafe methods, which allows remote attackers to execute unsafe code via a Java applet, aka "Inappropriate Methods Exposed in XML Suppor...

CVE-2002-0866

Java Database Connectivity JDBC classes in Microsoft Virtual Machine VM up to and including 5.0.3805 allow remote attackers to load and execute DLLs dynamic link libraries via a Java applet that calls the constructor for com.ms.jdbc.odbc.JdbcOdbc with the desired DLL terminated by a null string,...

CVE-2002-1257

Microsoft Virtual Machine VM up to and including build 5.0.3805 allows remote attackers to execute arbitrary code by including a Java applet that invokes COM Component Object Model objects in a web site or an HTML mail...

CVE-2002-1325

Microsoft Virtual Machine VM build 5.0.3805 and earlier allows remote attackers to determine a local user's username via a Java applet that accesses the user.dir system property, aka "User.dir Exposure Vulnerability."...

CVE-2002-1257

The CVE-2002-1257 issue affects Microsoft Virtual Machine (VM) up to and including build 5.0.3805. A remote attacker could deliver a Java applet that invokes COM objects on a web page or HTML email, allowing arbitrary code execution on the affected host. The vulnerability is severity high/critica...

CVE-2002-0866

CVE-2002-0866 affects Microsoft's Java VM JDBC classes, where JDBC functionality could be misused by a Java applet to load and execute a DLL via com.ms.jdbc.odbc.JdbcOdbc, with the DLL name terminated by a null string. The issue enables remote execution of DLLs from the client system, as describe...

CVE-2002-1325

CVE-2002-1325 affects Microsoft Virtual Machine (VM) versions up to build 5.0.3805. A Java applet that accesses the user.dir system property can disclose the local user’s username to a remote attacker, via a crafted page or email. CERT notes the vulnerability could leak the user’s system path and...

CVE-2002-0867

Microsoft Virtual Machine VM up to and including build 5.0.3805 allows remote attackers to cause a denial of service crash in Internet Explorer via invalid handle data in a Java applet, aka "Handle Validation Flaw."...

CVE-2004-0723

Microsoft Java virtual machine VM 5.0.0.3810 allows remote attackers to bypass sandbox restrictions to read or write certain data between applets from different domains via the "GET/Key" and "PUT/Key/Value" commands, aka "cross-site Java."...

CVE-2004-0723

CVE-2004-0723 affects the Microsoft Java VM 5.0.0.3810. The issue allows a remote attacker to bypass sandbox restrictions and read/write data between applets from different domains via the GET/Key and PUT/Key/Value commands (cross-site Java). The provided documents identify the vulnerable compone...

CVE-2004-0723

Microsoft Java virtual machine VM 5.0.0.3810 allows remote attackers to bypass sandbox restrictions to read or write certain data between applets from different domains via the "GET/Key" and "PUT/Key/Value" commands, aka "cross-site Java."...

CVE-2004-0651

Unknown vulnerability in Sun Java Runtime Environment JRE 1.4.2 through 1.4.203 allows remote attackers to cause a denial of service virtual machine hang...

Sun Java Virtual Machine 1.x - 'Font.createFont' Method Insecure Temporary File Creation

source: https://www.securityfocus.com/bid/10685/info Sun Java Virtual Machine is a component of the Sun Java infrastructure that performs the handling of Java applets and other programs. It is available for Unix, Linux, and Microsoft platforms. Sun Java Virtual Machine is prone to an insecure...

Sun Java Virtual Machine 1.x - Font.createFont Method Insecure Temporary File Creation

Sun Java Virtual Machine 1.x - Font.createFont Method Insecure Temporary File Creation source: https://www.securityfocus.com/bid/10685/info Sun Java Virtual Machine is a component of the Sun Java infrastructure that performs the handling of Java applets and other programs. It is available for Uni...

Linux Virtual Server procfs DoS

Virtual machine users can change /proc permissions...

Sun Java Runtime Environment vulnerable to DoS

Overview The Sun Java Runtime Environment JRE contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial-of-service condition in the Java Virtual Machine JVM. Description The Sun Java Runtime Environment provides the libraries and components necessary to run...

vserver virtual machine protection bypass

it's possible to escape virtual root Catalog regardless of permission...

CVE-2003-0896

The loadClass method of the sun.applet.AppletClassLoader class in the Java Virtual Machine JVM in Sun SDK and JRE 1.4.103 and earlier allows remote attackers to bypass sandbox restrictions and execute arbitrary code via a loaded class name that contains "/" slash instead of "." dot characters,...