High Risk Flaw in Sun's Java Web Start

John Heasman of NGSSoftware has discovered a high risk vulnerability in Sun Microsystem's Java Web Start that ships with the JRE and JDK on Windows platforms. The vulnerability affects the following version of Java Web Start: Java Web Start in JDK and JRE 5.0 Update 11 and earlier Java Web Start ...

Sun Java Web Start任意文件覆盖权限提升漏洞

BUGTRAQ ID: 24695 Java Web Start是用于简化在客户端部署Java应用程序的技术。 Java Web Start在处理应用程序的访问权限时存在漏洞，攻击者可能利用此漏洞提升自己的权限。 Java Web Start中的安全漏洞允许不可信任的应用程序给予其本身覆盖任何运行应用程序用户可写文件的权限，包括用户的.java.policy文件，这允许应用程序调用applet或Java Web Start应用程序，以运行不可信任应用程序的权限执行任意指令。 Sun JDK = 5.0 Update 11 Sun JRE = 5.0 Update 11 Sun JRE...

CVE-2007-2435

Sun Java Web Start in JDK and JRE 5.0 Update 10 and earlier, and Java Web Start in SDK and JRE 1.4.213 and earlier, allows remote attackers to perform unauthorized actions via an application that grants privileges to itself, related to "Incorrect Use of System Classes" and probably related to...

GLSA-200602-07 : Sun JDK/JRE: Applet privilege escalation

The remote host is affected by the vulnerability described in GLSA-200602-07 Sun JDK/JRE: Applet privilege escalation Applets executed using JRE or JDK can use 'reflection' APIs functions to elevate its privileges beyond the sandbox restrictions. Adam Gowdiak discovered five vulnerabilities that...

Security feature bypass

Unspecified vulnerability in Java Web Start after 1.0.102, as used in J2SE 5.0 Update 5 and earlier, allows remote attackers to obtain privileges via unspecified vectors involving untrusted applications...

CVE-2006-0613

Unspecified vulnerability in Java Web Start after 1.0.102, as used in J2SE 5.0 Update 5 and earlier, allows remote attackers to obtain privileges via unspecified vectors involving untrusted applications...

CVE-2006-0613

Unspecified vulnerability in Java Web Start after 1.0.102, as used in J2SE 5.0 Update 5 and earlier, allows remote attackers to obtain privileges via unspecified vectors involving untrusted applications...

Sun Java Web Start security bypass vulnerability

Overview A vulnerability in the Sun Java Web Start may allow an untrusted Java applet or application to bypass security restrictions and execute arbitrary code. Description Java Web Start technology allows Java applications and applets to be executed via HTTP. Remote applications and applets are...

[SA18762] Java Web Start Sandbox Security Bypass Vulnerability

TITLE: Java Web Start Sandbox Security Bypass Vulnerability SECUNIA ADVISORY ID: SA18762 VERIFY ADVISORY: http://secunia.com/advisories/18762/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: Java Web Start 1.x http://secunia.com/product/1005/ Sun Java JDK 1.5.x...

SUSE-SA:2005:032: java2

The remote host is missing the patch for the advisory SUSE-SA:2005:032 java2. Two security bugs in the SUN Java implementation have been fixed. Java Web Start can be exploited remotely due to an error in input validation of tags in JNLP files, so an attacker can pass arbitrary command-line option...

CVE-2002-2005

Technical details about CVE-2002-2005 are not publicly available in the provided documents. No concrete affected product/version, root cause, or remediation are described here. Monitor for updates from trusted sources.

CVE-2005-1973

Java Web Start in Java 2 Platform Standard Edition J2SE 5.0 and 5.0 Update 1 allows applications to assign permissions to themselves and gain privileges...

[SA15671] Java Web Start Sandbox Security Bypass Vulnerability

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

CVE-2005-0418

Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.206, on Mac OS X, allows untrusted applications to gain privileges via the value parameter of a property tag in a JNLP file. NOTE: it is highly likely that this item will be MERGED with CVE-2005-0836...

CVE-2005-0418

Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.206, on Mac OS X, allows untrusted applications to gain privileges via the value parameter of a property tag in a JNLP file. NOTE: it is highly likely that this item will be MERGED with CVE-2005-0836...

CVE-2005-0836

CVE-2005-0836 describes an argument injection in Sun Java Web Start/J2SE (Java Web Start for J2SE 1.4.2 up to 1.4.2_06) where the value parameter in a JNLP file’s property tag can be exploited to grant privileges to untrusted applications. This can bypass Java security restrictions and may lead t...

CVE-2005-0836

Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.206 allows untrusted applications to gain privileges via the value parameter of a property tag in a JNLP file...

Java Web Start argument injection vulnerability

OVERVIEW ======== Java Web Start is a technology for easy client-side deployment of Java applications. "Using Java Web Start technology, standalone Java software applications can be deployed with a single click over the network" from Sun Microsystems's website. Java Web Start is installed with Ja...

Incorrect Certificate Validation in Java Secure Socket Extension

According to SUN it has been reported that: "the Java Secure Socket Extension JSSE may incorrectly validate the digital certificate of a web site. This may result in untrustworthy web sites being authenticated for SSL transactions. The Java Plug-in and Java Web Start may incorrectly validate the...

Unauthorized access via Java Web Start

It's possible to pass property name="NAME" value="VALUE"/ with names different from jnlp. and javaws., it allows to leave sandbox...