exploit the possibilities
Showing 1 - 1 of 1 RSS Feed


iDEFENSE Security Advisory 2010-03-30.2
Posted Apr 1, 2010
Authored by iDefense Labs, regenrecht | Site idefense.com

iDefense Security Advisory 03.30.10 - Remote exploitation of a buffer overflow vulnerability in Oracle Corp.'s (formerly Sun Microsystems Inc.) Java Runtime Environment (JRE) could allow an attacker to execute arbitrary code with the privileges of the current user. The JRE is a platform that supports the execution of programs that are developed using the Java programming language. It is available for multiple platforms, including Windows, Linux and MacOS. The JRE platform also supports Java Applets, which can be loaded from Web pages. During the processing of an image file, user-controlled data is trusted and can result in an undersized allocation of a heap buffer. A copy operation into the heap buffer can lead to a heap overflow condition within the JRE. This condition may allow a remote attacker to subvert execution control and execute arbitrary code.

tags | advisory, java, remote, web, overflow, arbitrary
systems | linux, windows
MD5 | 23927a2f96a8ffb6ebc1a56c3a54cada
Page 1 of 1

Top Authors In Last 30 Days

Recent News

News RSS Feed
US Is Out Of The Picture In Syria-Turkey Crisis. Putin Now Owns This Mess.
Posted Oct 20, 2019

tags | headline, government, usa, russia, turkey, syria, military
The US Army Just Contracted With A UFO Group To Study Alien Alloys
Posted Oct 19, 2019

tags | headline, government, usa, space, science, military
Critical Linux Wi-Fi Bug Allows System Compromise
Posted Oct 19, 2019

tags | headline, linux, wireless, flaw
UC Browser Potentially Endangers 500 Million Users
Posted Oct 19, 2019

tags | headline, privacy, phone, flaw, google
US Stopped Using Floppy Disks To Manage Nuclear Weapons Arsenal
Posted Oct 19, 2019

tags | headline, government, usa, military
Zappos Offers Users 10% Discount In 2012 Breach Settlement
Posted Oct 18, 2019

tags | headline, hacker, privacy, data loss, identity theft
Cryptocurrency Execs Charged With Running $11 Million Ponzi Scheme
Posted Oct 18, 2019

tags | headline, bank, cybercrime, fraud, cryptography
How The Wheels Came Off Facebook's Libra Project
Posted Oct 18, 2019

tags | headline, government, bank, facebook, social, cryptography
Samsung Bug Allows Any Fingerprint To Unlock Phones
Posted Oct 18, 2019

tags | headline, phone, flaw, password, samsung
Dancho Danchev Launches New Uncle George Initiative
Posted Oct 17, 2019

tags | headline, hacker, cybercrime, fraud
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Security Services
Hosting By