CVE-2003-0896 in JVMinformation

Résumé (Anglaise)

The loadClass method of the sun.applet.AppletClassLoader class in the Java Virtual Machine (JVM) in Sun SDK and JRE 1.4.1_03 and earlier allows remote attackers to bypass sandbox restrictions and execute arbitrary code via a loaded class name that contains "/" (slash) instead of "." (dot) characters, which bypasses a call to the Security Manager s checkPackageAccess method.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Réserver

24/10/2003

Divulgation

17/11/2003

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
21003	Sun JVM/SDK loadClass buffer overflow	119	Preuve de concept	Non défini	CVE-2003-0896

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PrécédentAperçuSuivant ▸

Do you know our Splunk app?

Download it now for free!