152 matches found
Sun Java JRE vulnerable to privilege escalation
Overview A vulnerability in the Sun Java Runtime Environment may allow a malicious applet to gain elevated privileges. Description The Sun Java Runtime Environment JRE allows users to run Java applications in a browser or as standalone programs. Sun has made the JRE available for multiple operati...
CVE-2003-1301
CVE-2003-1301 affects Sun Java Runtime Environment (JRE) 1.x before 1.4.2_11 and 1.5.x before 1.5.0_06 (and usage in multiple web browsers), where deeply nested object arrays are not properly handled by the garbage collector, enabling remote denial of service (application crash) via invalid memor...
Sun Java Runtime Environment applet privilege escalation vulnerability
Overview The Sun Java Runtime Environment JRE may allow an untrusted Java applet to bypass Java security settings and execute arbitrary code. Description The Sun Java Runtime Environment provides the libraries and components necessary to run Java-based applications. There is an unspecified...
Sun Java JRE / Web Start Java Plug-in Untrusted Applet Privilege Escalation
The remote host is using a vulnerable version of Sun Java Runtime Plug-in, an web browser addon used to display Java applets. It has been reported that the JRE Plug-in Security can be bypassed. A remote attacker could exploit this by tricking a user into viewing a maliciously crafted web page...
CVE-2003-1123
Sun Java Runtime Environment JRE and SDK 1.4.001 and earlier allows untrusted applets to access certain information within trusted applets, which allows attackers to bypass the restrictions of the Java security model...
Sun Java JRE Plug-in Capability Arbitrary Package Access
The remote host is using a vulnerable version of Sun Java Runtime Plug-in, a web browser addon used to display Java applets. Two security issues have been reported in the remote version of this product : - An untrusted applet may escalate its privileges in order to read, write or execute files on...
CVE-2004-0651
Unknown vulnerability in Sun Java Runtime Environment JRE 1.4.2 through 1.4.203 allows remote attackers to cause a denial of service virtual machine hang...
Sun Java Runtime Environment 1.4.x - Font Object Assertion Failure Denial of Service
Sun Java Runtime Environment 1.4.x - Font Object Assertion Failure Denial of Service source: https://www.securityfocus.com/bid/10623/info The Sun Java Runtime Environment Font object is reportedly vulnerable to an assertion failure denial of service vulnerability. This issue is due to a failure o...
Sun Java Runtime Environment vulnerable to DoS
Overview The Sun Java Runtime Environment JRE contains a vulnerability that could allow an unauthenticated, remote attacker to cause a denial-of-service condition in the Java Virtual Machine JVM. Description The Sun Java Runtime Environment provides the libraries and components necessary to run...
CVE-2003-1301
Sun Java Runtime Environment JRE 1.x before 1.4.211 and 1.5.x before 1.5.006, and as used in multiple web browsers, allows remote attackers to cause a denial of service application crash via deeply nested object arrays, which are not properly handled by the garbage collector and trigger invalid...
Sun Java Runtime Environment allows untrusted applets to access information within trusted applets
Overview The Sun Java Runtime Environment JRE contains a vulnerability that may lead to sensitive information being leaked. Description Sun Microsystems describes the Sun JRE as follows:The Java RE provides the libraries, Java virtual machine, and other components necessary for you to run applets...
Sun JRESDK 1.x - Untrusted Applet Java Security Model Violation
Sun JRESDK 1.x - Untrusted Applet Java Security Model Violation source: https://www.securityfocus.com/bid/7824/info It has been reported that the Sun Java Runtime Environment does not properly protect trusted java applets. Because of this, it may be possible for an attacker to use a malicious...