what you don't know can hurt you
Showing 1 - 1 of 1 RSS Feed

Files

Zero Day Initiative Advisory 10-061
Posted Apr 6, 2010
Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 10-061 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun's Java Runtime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the CMM module of the Sun JVM. This module contains a function readMabCurveData. An applet can indirectly call this function and provide it with a malicious curv object. The function trusts the size of the curv element implicitly and copies the data into a fixed-length stack buffer. Exploitation of this issue can lead to arbitrary code execution under the context of the user invoking the applet.

tags | advisory, java, remote, arbitrary, code execution
advisories | CVE-2010-0838
MD5 | 1967765726837127221bfec88a56a989
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Unsecured Database Leaks Movie Chain Customer Info
Posted Jan 27, 2020

tags | headline, privacy, database, data loss
Google Now Charges The Government For User Data Requests
Posted Jan 27, 2020

tags | headline, government, privacy, usa, data loss, google, spyware
Hackers Hijack Social Media Accounts For The NFL
Posted Jan 27, 2020

tags | headline, hacker, password, twitter
Bills Seeks To Reform NSA Surveillance, Aiming At Section 215, FISA Process
Posted Jan 27, 2020

tags | headline, government, privacy, usa, phone, spyware, nsa
NYPD Arrests Ninth Methbot Gang Member
Posted Jan 25, 2020

tags | headline, malware, usa, cybercrime, fraud
China Locks Down 35M People Over Coronavirus Case
Posted Jan 25, 2020

tags | headline, virus, china
The Chrome Web Store Is Currently Facing A Wave Of Fraudulent Transactions
Posted Jan 25, 2020

tags | headline, cybercrime, fraud, google, chrome
Clearview AI Sued Over Privacy Concerns
Posted Jan 25, 2020

tags | headline, privacy
Facebook's Sir Nick Clegg Criticized Over WhatsApp Security
Posted Jan 24, 2020

tags | headline, hacker, privacy, flaw, facebook, cryptography
Mac Users Bombarded By Laughably Unsophisticated Malware
Posted Jan 24, 2020

tags | headline, hacker, malware, cybercrime, fraud, apple
View More News →
packet storm

© 2016 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close