← back
CVE-2007-2435

CVE-2007-2435

EPSS 5.0%
Sun Java Web Start in JDK and JRE 5.0 Update 10 and earlier, and Java Web Start in SDK and JRE 1.4.2_13 and earlier, allows remote attackers to perform unauthorized actions via an application that grants privileges to itself, related to "Incorrect Use of System Classes" and probably related to support for JNLP files.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://dev2dev.bea.com/pub/advisory/241http://docs.info.apple.com/article.html?artnum=307177http://lists.apple.com/archives/Security-announce/2007/Dec/msg00001.htmlhttp://osvdb.org/35483http://secunia.com/advisories/25069http://secunia.com/advisories/25283http://secunia.com/advisories/25413http://secunia.com/advisories/25474http://secunia.com/advisories/25832http://secunia.com/advisories/26311http://secunia.com/advisories/26369http://secunia.com/advisories/28115