Resolution: The first issue is addressed in the following releases (for Windows, Solaris, and Linux): Relief/Workaround: There is no workaround. Security Vulns in the JRE Image Parsing Code may Allow a Untrusted Applet to Elevate Privileges Resolution: This issue is addressed in the following releases (for Windows, Solaris, and Linux): ".Relief/Workaround: There is no workaround. Update to JDK and JRE 5.0 Update 10 or later. The vulnerability is reported in the following versions: ".Sun has a weird habit of *not* removing older versions from your machine, so you might want to do that manually." SDK and JRE 1.3.x: Update to SDK and JRE 1.3.1_19 or later. SDK and JRE 1.4.x: Update to SDK and JRE 1.4.2_13 or later. JDK and JRE 5.0: Update to JDK and JRE 5.0 Update 8 or later. Impact: Privilege escalation, System access (Several interesting bug fixes)Ħ374321 java classes_awt Textfield loses focus after alt key hit in IE browserĦ424631 java_plugin iexplorer Signed applet hangs browser if a remote policy server is being usedĦ386537 java_plugin iexplorer Deadlock occurs between Java Plug-in and Windows in 1.3.1_06Ħ437047 java_plugin iexplorer Java Plugin controls are considered "Not Verified" in IE's "Managed Add-ons" listĦ466876 java_plugin iexplorer Applet frame is not repainted correctlyĦ460113 java_plugin iexplorer REGRESSION: Access Violation running on 5.0u9 b01 pluginĦ417341 java_plugin misc IE Window becomes Zombie when closed prior to the modal dialogĦ406801 java_plugin misc Vista: Click "Go to " button of Java system tray, two IE windows pop up Repeat steps 2 & 3 until the problem is seen.Java Runtime Environment (JRE) 5.0 Update 10 released Use the browser's "back" button to return to the Java Test AppletĤ. Navigate to another page in the same browser windowģ. Load the Java Test Applet (using IE 8 or 9) and the 1.7.0_04 OracleĢ. The issue is also highly reproducbile using one of Licensee's applet-based products.ġ. The issue is reproducible with one of the applets on, but not all applets exhibit the problem. The only way to recover the situation is to kill the java process and reload the page. Under certain circumstances an applet fails to (re)load, and the VM hangs. Reproducble by Licensee using 7u4, 7u5, 7u6-ea. Java HotSpot(TM) Client VM (build 23.0-b21, mixed mode, sharing) Java(TM) SE Runtime Environment (build 1.7.0_04-b22) (Unverified) Regression: Plugin hang with 7u4 and IE8/9
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |