what you don't know can hurt you
Showing 1 - 1 of 1 RSS Feed

Files

Zero Day Initiative Advisory 10-052
Posted Apr 5, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-052 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun's Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within a function responsible for allocating objects in the com.sun.media.sound libraries. This function takes an integer parameter and adds a fixed amount to it before allocating from the heap. This can be exploited to gain arbitrary code execution by forcing a call to this allocator with a large enough integer parameter.

tags | advisory, java, remote, arbitrary, code execution
advisories | CVE-2010-0843
MD5 | 690b11bcdbb1c0781cf3a3f14e4388f7
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Understanding The Ripple Effect: Large Enterprise Data Breaches Threaten Everyone
Posted Nov 9, 2019

tags | headline, hacker, privacy, data loss, password, identity theft
Bugcrowd Breaks Its Weekly Bounty Payout Record
Posted Nov 9, 2019

tags | headline, hacker, flaw
New Titanium Backdoor Debuted
Posted Nov 9, 2019

tags | headline, hacker, malware, backdoor
Apple Mail On macOS Leaves Parts Of Encrypted Emails In Clear
Posted Nov 9, 2019

tags | headline, privacy, email, flaw, apple, cryptography
Morrisons Is To Blame For 100k Payroll Theft And Leak
Posted Nov 9, 2019

tags | headline, hacker, privacy, britain, data loss
Surveillance Kits Company Slaps Made In America Sticker On Gear, Selling It To The US Government
Posted Nov 8, 2019

tags | headline, government, usa, china, fraud, cyberwar, backdoor
Nvidia Patches Severe GeForce, GPU Vulnerabilities
Posted Nov 8, 2019

tags | headline, flaw, patch
Kenya Passes Data Protection Law Crucial For Tech Investments
Posted Nov 8, 2019

tags | headline, government, data loss, africa, identity theft
Chronicle Is Dead And Google Killed It
Posted Nov 8, 2019

tags | headline, google
Former Twitter Employees Charged With Spying On Users For Saudis
Posted Nov 7, 2019

tags | headline, government, cybercrime, fraud, spyware, social, saudi arabia, twitter
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close