Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » Up and Running » Security » Security » Security Vulnerability in Processing GIF Images in the JRE
Search Topic:
Uniqs:
232		 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Posting:
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
10 minute disposable e-mail address »
« Microsoft Security Bulletin(s) for 1/9/2007  
AuthorAll Replies


dp
Premium,MVM
join:2000-12-08
Greensburg, PA
·Verizon Online DSL

Security Vulnerability in Processing GIF Images in the JRE

Security Vulnerability in Processing GIF Images in the Java Runtime Environment May Allow an Untrusted Applet to Elevate Privileges

A buffer overflow vulnerability in processing GIF images in the Java Runtime Environment may allow an untrusted applet to elevate its privileges. For example, an applet may grant itself permissions to read and write local files or execute local applications with the privileges of the user running the untrusted applet.

Contributing Factors

This issue can occur in the following releases (for Windows, Solaris, and Linux):

* JDK and JRE 5.0 Update 9 and earlier
* SDK and JRE 1.4.2_12 and earlier
* SDK and JRE 1.3.1_18 and earlier

Resolution

This issue is addressed in the following releases (for Windows, Solaris, and Linux):

* JDK and JRE 5.0 Update 10 or later
* SDK and JRE 1.4.2_13 or later
* SDK and JRE 1.3.1_19 or later

»sunsolve.sun.com/search/document···102760-1
--
Write your questions down on the back of a $20 dollar bill and send them to me
Microsoft Security MVP
to forum · permalink · · 2007-01-18 18:13:43 · Reply to this


antdude
A Ninja Ant
Premium,VIP
join:2001-03-25
1 edit		  »news.com.com/2100-1002_3-6151100.html as well.

Whew, I am safe. I had b10 for months.
to forum · permalink · · 2007-01-19 01:27:48 · Reply to this
Forums » Up and Running » Security » Security10 minute disposable e-mail address »
« Microsoft Security Bulletin(s) for 1/9/2007  

Wednesday, 09-Dec 02:40:29 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.republican-creole
page compression OFF
Most commented news this week
· [194] Sprint Sued For Distracted Driving Death
· [81] 3G Network Test Says AT&T Is Tops
· [72] Mediacom Unveils 105 Mbps Pricing
· [62] Sprint Poised For A Turnaround?
· [50] The Future Of Wi-Fi Is Bright
· [50] WPA Cracker: Test WPA-PSK Networks In 20 Minutes
· [47] Site Leaks Yahoo, Verizon Fed Data Share Pricing
· [44] Microwaving Your Innards Is Not 'Extreme'
· [39] Verizon LTE: 5-12 Mbps Downstream
· [20] AT&T Releases Network Reporting iPhone App
Most people now reading
· Comcast refused to install 400' feet. [Comcast HSI]
· Man Downloads Child Porn "Accidentally," Faces 20 Years [Security]
· [How to] Install Asterisk on an Asus WL-520GU router [VOIP Tech Chat]
· Windows 7 boot manager editing questions [Microsoft Help]
· World of Warcraft Client Patch 3.3.0 (12-08-2009) [World of Warcraft]
· Maximizing Rogue DPS for 3.1 [World of Warcraft]
· ICC Strats??? [World of Warcraft]
· False positive in Avast! or is it real? [Security]
· Using DIR-615 C1/3.01 with Trendnet TEW-652BRP in N Mode [D-Link]