321971 – (CVE-2007-5237) CVE-2007-5237 Untrusted Java Web Start application may read and write local files

Bug 321971 (CVE-2007-5237) - CVE-2007-5237 Untrusted Java Web Start application may read and write local files

Summary: CVE-2007-5237 Untrusted Java Web Start application may read and write local f...

Keywords:
Status:	CLOSED NOTABUG
Alias:	CVE-2007-5237
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2007-10-07 12:06 UTC by Marc Schoenefeld
Modified:	2021-11-12 19:45 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2010-04-15 19:55:20 UTC
Embargoed:

Attachments	(Terms of Use)

Description Marc Schoenefeld 2007-10-07 12:06:25 UTC

Sun describes a flaw at: 

http://sunsolve.sun.com/search/document.do?assetkey=1-26-103073-1

Two vulnerabilities in Java Web Start may allow an untrusted application to read
and write local files that are accessible to the user running the untrusted
application.

Comment 2 Vincent Danen 2010-04-15 19:55:20 UTC

These issues did not affect the versions of Sun JDK as shipped with Red Hat Enterprise Linux Extras 4 or 5.

Note You need to log in before you can comment on or make changes to this bug.