4 matches found
CVE-2009-1105
CVE-2009-1105 affects the Java Plug-in in JDK/JRE 6 Update 12, 11, and 10. The issue allows a user‑assisted remote attacker to cause a trusted applet to execute in an older JRE version, enabling exploitation of vulnerabilities present in that older runtime. The description from SUSE corroborates ...
CVE-1999-0142
The CVE-1999-0142 issue concerns the Java Applet Security Manager in Netscape Navigator 2.0 and Java Developer’s Kit 1.0, where an applet could connect to arbitrary hosts due to how the security manager operates. Affected software/components are the Java Applet Security Manager implementation wit...
CVE-1999-0440
Technical details are not publicly available in the provided documents. Monitor for updates.
CVE-2008-3440
CVE-2008-3440 affects Sun Java 1.6.0_03 and earlier (potentially later versions) where updater authenticity is not properly verified, enabling a man-in-the-middle attacker to run arbitrary code via a Trojan horse update (as demonstrated by evilgrade and DNS cache poisoning). The connected sources...