Sun Java Web Start in JDK and JRE 5.0 Update 10 and earlier, and Java Web Start in SDK and JRE 1.4.2_13 and earlier, allows remote attackers to perform unauthorized actions via an application that grants privileges to itself, related to "Incorrect Use of System Classes" and probably related to support for JNLP files.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2007-05-02 03:19
Updated : 2017-10-10 18:32
NVD link : CVE-2007-2435
Mitre link : CVE-2007-2435
JSON object : View
CWE
CWE-264
Permissions, Privileges, and Access Controls
Products Affected
sun
- sdk
- java_enterprise_system
- jre