Title: Multiple Vendor Java Virtual Machine Type Confusion Attack Vulnerability
Severity: MODERATE
Description:
Multiple Vendor JVM Type Confusion Attack Vulnerability
The Java Virtual Machine acts as an interface between Java binary code and the hardware platform which executes the program's instructions. Several vendors have released versions of the Java Virtual Machine including Sun Microsystems and Netscape.
A serious vulnerability exists in certain current versions of the JVM.
It is exploited by an attacker who creates an applet which references an object using two pointers of incompatible type. A flaw in the byte code verifier permits a malicious applet to write to memory addresses which would normally be read-only. This circumvents Java's typing rules, and can permit a malicious applet to undermine the normal java security measures on the victim's system.
If the victim can be led to visit the attacker's website, the applet can be used by the attacker to assume control of the remote system, making it possible to read or overwrite data, and to run arbitrary code on the host machine.
Affected Products:
- Netscape Navigator 4.0.0x
- Sun JDK 1.1.0
- Sun JDK 1.2.0
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
