Sun Fixes Critical Java Plug-In Flaws

Discussions

News: Sun Fixes Critical Java Plug-In Flaws

  1. Sun Fixes Critical Java Plug-In Flaws (3 messages)

    Sun have confirmed a couple of security flaws with the Java plug-in. They said the more serious of the two vulnerabilities could allow an untrusted applet to elevate privileges through JavaScript calling into Java code.

    For example, an untrusted applet may grant itself permissions to read and write local files, or may execute local applications that are accessible to the user running the untrusted applet.

    A second bug may allow an untrusted applet to inappropriately interfere with another applet in the same Web page.

    Read more Sun Fixes Critical Java Plug-In Flaws

    Threaded Messages (3)

  2. Sun Fixes Critical Java Plug-In Flaws[ Go to top ]

    "I did not engage inappropriate relations with that applet"
  3. deja vu?[ Go to top ]

    Anyone know when this article was written (instead of published...)?

    It reads almost word for word (including the affected JVM versions) like something that was already fixed months ago.
  4. deja vu?[ Go to top ]

    Yeah, TSS are getting really sloppy. This is, like, *so* last week.