Sun fixes multiple Java flaws

By Bill Brenner, News Writer 29 Nov 2005 | SearchSecurity.com

Security Wire Daily News Digg This!     StumbleUpon     Del.icio.us

Sun Microsystems Inc. has fixed multiple security holes in programs computers rely on to run Java applications. Attackers could use malicious applets on vulnerable PCs to obtain the elevated user privileges needed to read and write local files or execute local applications.

The Santa Clara, Calif.-based company released three advisories Monday. Two of them outline flaws in the Java Runtime Environment (JRE), which provides the minimum requirements for computers to run a Java application. It consists of the Java Virtual Machine (JVM), core classes and supporting files, according to Whatis.com, a sister site to SearchSecurity.com.

The first advisory explains that a vulnerability in JRE could allow an untrusted applet to elevate its privileges. "For example, an applet may grant itself permissions to read and write local files or execute local applications that are accessible to the user running the untrusted applet," Sun said.

The issue affects Java Development Kit (JDK) and JRE 5.0 Update 3 and earlier for Windows, Solaris and Linux, Sun said. The problem is fixed in JDK and JRE 5.0 Update 4 and later for all three operating systems.

The second advisory details three vulnerabilities that could allow a malicious applet to elevate its privileges "with the use of 'reflection' APIs in the Java Runtime Environment." For example, Sun said, "An untrusted applet may grant itself permissions to read and write local files or execute local applications that are accessible to the user running the untrusted applet."

The following releases are affected by one or more of the flaws on the Windows, Solaris and Linux platforms: SDK (software developer's kit) and JRE 1.3.1_15 and prior; SDK and JRE 1.4.2_08 and prior; and JDK and JRE 5.0 Update 3 and prior. The issues are fixed in SDK and JRE 1.3.1_16 and later, SDK and JRE 1.4.2_09 and later; and JDK and JRE 5.0 Update 4 and later.

The third advisory outlines a flaw in the Java Management Extensions (JMX) implementation that's included with JRE. Like the vulnerabilities in the second advisory, a malicious applet could exploit the flaw to elevate its privileges to read and write local files or execute local applications.

This affects JDK and JRE 5.0 Update 3 or earlier for Windows, Solaris and Linux, and is fixed in JDK and JRE 5.0 Update 4 or later.

Tags: Application Attacks (Buffer Overflows, Cross-Site Scripting),  Web Application Security,  Web Services Security and SOA Security,  VIEW ALL TAGS

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Application Attacks (Buffer Overflows, Cross-Site Scripting) Quiz: How to build secure applications Black box and white box testing: Which is best? Adobe warns of critical update for Reader, Acrobat 9.1.3 9 Ways to Improve Application Security After an Incident Developers Need Help with Security Errors Buffer overflow tutorial: How to find vulnerabilities, prevent attacks SQL injection protection: A guide on how to prevent and stop attacks Experts rebuke programmers who use SQL injection as feature SANS: Application threats, website flaws pose biggest security threats Mozilla helps Adobe push out faster patches Application Attacks (Buffer Overflows, Cross-Site Scripting) Research Web Application Security Black box and white box testing: Which is best? InZero Systems launches hardware-based security gateway Web application vulnerability assessment shows patching progress Preventing SQL injection attacks: A network admin's perspective Cisco acquires SaaS security vendor ScanSafe Web application firewall use goes beyond compliance, company finds Gumblar Trojan drive-by exploits spike following Adobe update Some Facebook applications lead to Russian attack sites Barracuda acquires Purewire expanding Web security reach An enterprise strategy for Web application security threats Web Services Security and SOA Security Security testing firm uncovers XML vulnerabilities Cryptographers say cloud computing can be secured Information security book excerpts and reviews Will cloud computing and virtualization save the day? MySpace, Facebook ignoring basic principles of security Kaminsky: DNS flaw capable of attacks on many fronts Kaminsky on DNS rebinding attacks, hacking techniques Which operating system can best secure an FTP site? IBM's Watchfire halts network research, focuses on Web apps How does identity propagation work?

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary buffer overflow  (SearchSecurity.com) cache poisoning  (SearchSecurity.com) cyberterrorism  (SearchSecurity.com) dictionary attack  (SearchSecurity.com) directory harvest attack  (SearchSecurity.com) distributed denial-of-service attack  (SearchSecurity.com) JavaScript hijacking  (SearchSecurity.com) ping of death  (SearchSecurity.com) stack smashing  (SearchSecurity.com) SYN flooding  (SearchSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary