« Sun Alert 270408... | Main | Sun Alert 266388... »
03 Nov 2009 Sun Alert 270475 A Security Vulnerability in the Java Runtime Environment With Verifying HMAC Digests may Allow Authentication to be Bypassed
posted by chandan in Alerts
Product: Java Platform, Standard Edition (Java SE)

A security vulnerability in the Java Runtime Environment with verifying HMAC digests may allow authentication to be bypassed. This could allow a user to forge a digital signature that would be accepted as valid. Applications that validate HMAC-based digital signatures may be vulnerable to this type of attack.

Note: This vulnerability cannot be exploited by an untrusted applet or Java Web Start application.

Sun acknowledges, with thanks, Coda Hale for bringing this issue to our attention.

State: Resolved
First released: 03-Nov-2009
Sun Alert Link: http://sunsolve.sun.com/search/document.do?assetkey=1-66-270475-1
Permalink |
Comments:

Post a Comment:

Comments are closed for this entry.

« Sun Alert 270408... | Main | Sun Alert 266388... »

Sun Certified Security Administrator

Download Solaris
Patches and Updates
Download Solaris Security Toolkit

« December 2009
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
  
       
Today


Company Info   |   Contact   |   Terms of Use   |   Privacy   |   Trademarks   |   Copyright 2008 Sun Microsystems, Inc.