Red Hat Bugzilla – Bug 321971
CVE-2007-5237 Untrusted Java Web Start application may read and write local files
Last modified: 2010-04-15 15:55:20 EDT
Sun describes a flaw at:
Two vulnerabilities in Java Web Start may allow an untrusted application to read
and write local files that are accessible to the user running the untrusted
These issues did not affect the versions of Sun JDK as shipped with Red Hat Enterprise Linux Extras 4 or 5.