kjkoster
13-02-2009, 13:45
Dear All,
Java for Apple's Mac OS X was updated . Here are the fixed CVE's.
CVE-2008-2086: Allows remote attackers to execute arbitrary code via a crafted jnlp file. (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2086)
CVE-2008-5340: Allows untrusted JWS applications to gain privileges to access local files or applications. (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5340)
CVE-2008-5342: Allows untrusted downloaded applications to cause local files to be displayed in the browser of the user of the untrusted application. (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5342)
CVE-2008-5343: allows remote attackers to make unauthorized network connections and hijack HTTP sessions via a crafted file that validates as both a GIF and a Java JAR file. (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5343)
Kees jan
Java for Apple's Mac OS X was updated . Here are the fixed CVE's.
CVE-2008-2086: Allows remote attackers to execute arbitrary code via a crafted jnlp file. (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-2086)
CVE-2008-5340: Allows untrusted JWS applications to gain privileges to access local files or applications. (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5340)
CVE-2008-5342: Allows untrusted downloaded applications to cause local files to be displayed in the browser of the user of the untrusted application. (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5342)
CVE-2008-5343: allows remote attackers to make unauthorized network connections and hijack HTTP sessions via a crafted file that validates as both a GIF and a Java JAR file. (http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5343)
Kees jan