kjkoster
05-11-2008, 09:20
Dear All,
I saw this one was coming up earlier this month, but I waited for it to be confirmed before posting it. Java Web Start allows remote attackers to execute arbitrary programs on a client machine.
The exploit is trivial (http://www.securityfocus.com/archive/1/archive/1/497972/100/0/threaded) for any Java developer.
No remedy that I'm aware of at this time, but that should be a matter of time.
Kees Jan
I saw this one was coming up earlier this month, but I waited for it to be confirmed before posting it. Java Web Start allows remote attackers to execute arbitrary programs on a client machine.
The exploit is trivial (http://www.securityfocus.com/archive/1/archive/1/497972/100/0/threaded) for any Java developer.
No remedy that I'm aware of at this time, but that should be a matter of time.
Kees Jan