« Sun Alert 103064... | Main | Sun Alert 102934... »
22 Oct 2007 Sun Alert 103072 An Untrusted Java Web Start Application or Java Applet May Move or Copy Arbitrary Files by Requesting the User to Drag and Drop a File from Application or Applet Window to a Desktop Application
posted by security in Alerts
Product: Java 2 Platform, Standard Edition

A vulnerability in the Java Runtime Environment may allow an untrusted Java Web Start application or Java applet to move or copy arbitrary files on the system that the application or applet runs on, by requesting the user of the application or applet to drag a file from the application or applet window to a desktop application that has permissions to accept and write files on the system. To exploit this vulnerability, the application or applet has to successfully persuade the user to drag and drop the file.

Avoidance: Patch, Upgrade, Workaround
State: Resolved
First released: 03-Oct-2007
Sun Alert Link: http://sunsolve.sun.com/search/document.do?assetkey=1-26-103072-1
Permalink | Comments [0]
Trackback URL: http://blogs.sun.com/security/entry/sun_alert_103072_an_untrusted
Comments:

Post a Comment:

Name:
E-Mail:
URL:

Your Comment:

HTML Syntax: NOT allowed

« Sun Alert 103064... | Main | Sun Alert 102934... »

Sun Certified Security Administrator

Download Solaris
Patches and Updates
Download Solaris Security Toolkit

« November 2009
SunMonTueWedThuFriSat
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
     
       
Today


Company Info   |   Contact   |   Terms of Use   |   Privacy   |   Trademarks   |   Copyright 2008 Sun Microsystems, Inc.