Forgot your password?
typodupeerror
Java Security Sun Microsystems

Serious New Java Flaw Affects All Browsers 164

Posted by Soulskill
from the at-least-it's-consistent dept.
Trailrunner7 writes "There is a serious vulnerability in Java that makes all current browsers vulnerable to simple Web-based attacks that could lead to a complete compromise of the affected system. Two separate researchers released information on the vulnerability on Friday, saying that it has been present in Java for years. The problem lies in the Java Web Start framework, a technology that Sun Microsystems developed to enable the simplified deployment of Java applications. In essence, the JavaWS technology fails to validate parameters passed to it from the command line, and attackers can control those parameters using specific HTML tags on a Web page, researcher Ruben Santamarta said in an advisory posted Friday morning."
This discussion has been archived. No new comments can be posted.

Serious New Java Flaw Affects All Browsers

Comments Filter:

In any formula, constants (especially those obtained from handbooks) are to be treated as variables.

Working...