[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Sun Java Plugin arbitrary package access vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Sun Java Plugin arbitrary package access vulnerability
From: Ken S <ken.securitylist@xxxxxxxxx>
Date: Wed, 24 Nov 2004 23:00:30 -0600

After installing a new version of the JRE on two machines, IE and
Firefox both report the plug-in as 1.4.2_06.  For browsing to unknown
sites, it would appear that there is no need to uninstall the older
versions, unless there is a way for the javascript code to call a
lower version of the JRE.   Hopefully, that's not possible.

Follow-Ups:
- Re: Sun Java Plugin arbitrary package access vulnerability
  - From: Peter Greenwood

Prev by Date: Atari800 - local root.
Next by Date: [ GLSA 200411-34 ] Cyrus IMAP Server: Multiple remote vulnerabilities
Previous by thread: Rumours about Opera
Next by thread: Re: Sun Java Plugin arbitrary package access vulnerability
Index(es):
- Date
- Thread