« Sun Alert 243786... | Main | Sun Alert 240365... »
03 Dec 2008 Sun Alert 244990 A Buffer Overflow Vulnerability in the Java Runtime Environment (JRE) May Allow Privileges to be Escalated
posted by security in Alerts
Product: Java Platform, Standard Edition (Java SE)

A buffer overflow vulnerability in the Java Runtime Environment (JRE) may allow an untrusted Java application that is launched through the command line to escalate privileges. For example, the untrusted Java application may grant itself permissions to read and write local files or execute local applications that are accessible to the user running the untrusted Java application.

This vulnerability cannot be exploited by an applet or Java Web Start application.

Sun acknowledges with thanks, Stefan Middendorf from Cirosec for bringing this issue to our attention.
Additional information on this issue can be found at:
http://www.ximido.de/research/advisories/SM_Java-BO_200811.txt


State: Resolved
First released: 03-Dec-2008
Sun Alert Link: http://sunsolve.sun.com/search/document.do?assetkey=1-66-244990-1
Permalink |
Comments:

Post a Comment:

Comments are closed for this entry.

« Sun Alert 243786... | Main | Sun Alert 240365... »

Sun Certified Security Administrator

Download Solaris
Patches and Updates
Download Solaris Security Toolkit

« December 2009
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
  
       
Today


Company Info   |   Contact   |   Terms of Use   |   Privacy   |   Trademarks   |   Copyright 2008 Sun Microsystems, Inc.