Sun Java Plug-In 1.4 up to and including 1.4.2_02 allows remote malicious users to repeatedly access the floppy drive via the createXmlDocument method in the org.apache.crimson.tree.XmlDocument class, which violates the Java security model.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun java plug-in 1.4 |
||
sun java plug-in 1.4.2 |
||
sun java plug-in 1.4.2_01 |
||
sun java plug-in 1.4.2_02 |