Microsoft Virtual Machine 2000 Series/3000 Series getSystemResource Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/957/info Microsoft's Java Virtual Machine will allow the reading of local file information by a remote Java application. This can be done two ways: 1: Via the getSystemResourceAsStream function. The filename must be...

PT-2001-1156 · Ibm · Lotus Notes Client

Name of the Vulnerable Software and Affected Versions: Lotus Notes Client R5 Description: The issue concerns the Extended Control List ECL feature of the Java Virtual Machine JVM in the affected software. It allows malicious web site operators to determine the existence of files on the client by...

CVE-2000-1117

CVE-2000-1117 affects the Lotus Notes Client R5. The JVM’s Extended Control List (ECL) feature enables a timing side channel via getSystemResource to infer whether a local file exists, by comparing dialog timing when a Java applet accesses local files. An attacker using a malicious applet in the ...

Microsoft Virtual Machine 2000 - Series3000 Series getSystemResource

Microsoft Virtual Machine 2000 - Series3000 Series getSystemResource source: https://www.securityfocus.com/bid/957/info Microsoft's Java Virtual Machine will allow the reading of local file information by a remote Java application. This can be done two ways: 1: Via the getSystemResourceAsStream...