The vulnerability of the installp and updatep packages in the JRE/SDK of the IBM AIX operating system allows a attacker to manipulate the update process for files such as java.security, java.policy, and javaws.policy.

The vulnerability of the installp and updatep packages in the JRE/SDK of the IBM AIX operating system is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to manipulate the update process for files such as java.security, java.policy, and...

Design/Logic Flaw

A flaw in the AIX 5.3, 6.1, 7.1, and 7.2 JRE/SDK installp and updatep packages prevented the java.security, java.policy and javaws.policy files from being updated correctly. IBM X-Force ID: 130809...

SuSE9 Security Update : IBM Java5 JRE and SDK (YOU Patch Number 12336)

This update brings IBM Java 5 to Service Release 9. It fixes the following security problems : - A security vulnerability in the Java Runtime Environment JRE may allow an untrusted applet or application to list the contents of the home directory of the user running the applet or application...

SuSE 10 Security Update : Java (ZYPP Patch Number 3891)

The IBM Java JRE/SDK has been brought to release 1.4.2 SR8, containing several bugfixes, including the following security fixes : - A buffer overflow vulnerability in the JavaTM Runtime Environment may allow an untrusted applet to elevate its privileges. For example, an applet may grant itself...