Whole Network AJAX Basics conference E-Commerce Monthly Contest Programming Security

 

Security Vulnerability Reported In GIF Images Processing In JRE

Filed in archive Security by gautam on January 17, 2007

Security Vulnerability Reported In GIF Images Processing In JRE
An unknown researcher has reported buffer overflow vulnerability in processinglinks of GIF images in Java Runtime Environment which may lead to an untrusted applet elevating its privileges. It may cause an applet to give permission for reading and writing local files or executing local applications with a user running unknown applet.

The following releases might be affected:

SDK and JRE 1.4.2_12 and earlier
JDK and JRE 5.0 Update 9 and earlier
SDK and JRE 1.3.1_18 and earlier

The symptoms of the vulnerability cannot be determined but Sun has addressed the issue in the following releases:

SDK and JRE 1.4.2_13 or later
JDK and JRE 5.0 Update 10 or later
SDK and JRE 1.3.1_19 or later

Click here for the resolution






Permalink: Security Vulnerability Reported In GIF Images Processing In JRE
Tags: jre  java  runtime  environment  sunjava  gif  images  buffer  overflow  vulnerability  ajax  download+java 

Trackback: http://www.creative-weblogging.com/cgi-bin/mt-tb.pl/49924





RSSrss   | See all blog subscribe options
Google google   |   What is RSS?
Yahoo! yahoo
Addthis Subscribe using any feed reader!
Bloglines Bloglines
Newsletter
Grouptivity

Use the search to look for other interesting posts



 
  • Advertise with us

  • Learn more about our advertising options or email advertising - at - creative-weblogging.com or give us a call at +1 (650) 331 4900.


  • Testimonials

  • 'Great looking blog. Good quality posts with useful information.'


  • Other blogs in the same channel in the Creative Weblogging Network







 

Tagcloud: AJAX Application Development Awards Basics Business conference E-Commerce Management Mobile Devices mobile phones Monthly Contest Personal Programming Security Service Oriented Architectures Sponsored Posts updates Web Services