3 matches found
Sun Java JRE jpiexp32.dll NULL Pointer Remote DoS
According to its version number, the Sun Java Runtime Environment JRE installed on the remote host reportedly contains an issue in 'jpiexp32.dll' that can lead to a NULL pointer exception when an HTML object references a Java applet but does not define the 'name' attribute. If a remote attacker c...
Sun Java运行时环境jpiexp32.dll对象名称空指针引用漏洞
BUGTRAQ ID: 27185 CVECAN ID: CVE-2007-0012 Solaris系统的Java运行时环境(JRE)为JAVA应用程序提供可靠的运行环境。 JRE处理畸形的Applet数据时存在漏洞,远程攻击者可能利用此漏洞导致相关的应用崩溃。 RFC2397标准允许在URI中编码java applet并嵌入到HTML文档中。如果applet被编码为带有未定义name属性对象标签的数据参数的话,并将其传送给Internet Explorer,则解码后将其传送给JVM就会在jpiexp32.dll中触发空指针引用,导致拒绝服务。 Sun JRE 5.0 Update 14...
CVE-2007-0012
CVE-2007-0012 affects Sun JRE 5.0 before update 14. An issue in the jpiexp32.dll can trigger a NULL pointer dereference when an HTML object tag encodes a Java applet without a defined name attribute, potentially crashing Internet Explorer/JRE. Exploitation described as remote and requiring a user...