The Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and previous versions; JDK and JRE 5.0 Update 16 and previous versions; and SDK and JRE 1.4.2_18 and previous versions does not properly enforce context of ZoneInfo objects during deserialization, which allows remote malicious users to run untrusted applets and applications in a privileged context, as demonstrated by "deserializing Calendar objects".
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun jdk |
||
sun jdk 5.0 |
||
sun jdk 6 |
||
sun jre |
||
sun jre 1.4.2 1 |
||
sun jre 1.4.2 2 |
||
sun jre 1.4.2 3 |
||
sun jre 1.4.2 4 |
||
sun jre 1.4.2 5 |
||
sun jre 1.4.2 6 |
||
sun jre 1.4.2 7 |
||
sun jre 1.4.2 8 |
||
sun jre 1.4.2 9 |
||
sun jre 1.4.2 10 |
||
sun jre 1.4.2 11 |
||
sun jre 1.4.2 12 |
||
sun jre 1.4.2 13 |
||
sun jre 1.4.2 14 |
||
sun jre 1.4.2 15 |
||
sun jre 1.4.2 16 |
||
sun jre 1.4.2 17 |
||
sun jre 5.0 |
||
sun jre 6 |
||
sun sdk |
||
sun sdk 1.4.2 1 |
||
sun sdk 1.4.2 2 |
||
sun sdk 1.4.2 3 |
||
sun sdk 1.4.2 4 |
||
sun sdk 1.4.2 5 |
||
sun sdk 1.4.2 6 |
||
sun sdk 1.4.2 7 |
||
sun sdk 1.4.2 8 |
||
sun sdk 1.4.2 9 |
||
sun sdk 1.4.2 10 |
||
sun sdk 1.4.2 11 |
||
sun sdk 1.4.2 12 |
||
sun sdk 1.4.2 13 |
||
sun sdk 1.4.2 14 |
||
sun sdk 1.4.2 15 |
||
sun sdk 1.4.2 16 |
||
sun sdk 1.4.2 17 |
Market share! It’s an easy answer, but not the only one. In 2011, Apple was estimated to account for over 5% of worldwide desktop/laptop market share. This barrier was a significant one to break – Linux maintains under 2% market share and Google ChromeOS even less. This 15 year peak coincided with the first exploration by the aggressive FakeAv/Rogueware market targeting Apple computers, which we discovered and posted in April 2011 and later in May 2011, which no longer seem to be such an odd...
Infected machines, not blank-eyed shuffling fanbois
The Mac-specific Flashback Trojan created a zombie army of 550,000 Mac machines by exploiting a Java hole that Apple only patched on Tuesday, six weeks after Microsoft plugged it up on Windows machines. This is according to Russian anti-virus firm Dr Web, which arrived at the figure after it successfully managed to sinkhole one of the command-and-control servers used to control Mac machines hit by the latest attack. The legions of compromised zombies were mostly located in the US (56.6 per cent,...
Java-based exploits and phishing on social networks dominate
Win7 infection rates rose during the second half of 2010 even as malware hit rates on XP machines declined, according to official statistics from Microsoft. The latest edition of Microsoft's Security Intelligence Report shows an infection rate of four Win7 PCs per 1,000 in the second half of 2010, up from three Win7 PCs per 1,000 during the first half of 2010. The rise of more than 30 per cent contrasts with a drop of the infection rate, albeit from a much higher starting point, for older and le...