Java Could Allow Untrusted Applets to Elevate Privileges

Five vulnerabilities in Java could allow untrusted applets to elevate privileges, and the applets could then read and write local files and perform other unauthorized actions.

ITPro Today

December 20, 2005

1 Min Read
ITPro Today logo in a gray background | ITPro Today

Five vulnerabilities in Java could allow untrusted applets to elevate privileges, and the applets could then read and write local files and perform other unauthorized actions. Sun Microsystems published three articles (1, 2, 3) that discuss these problems and recommends that people upgrade to Java 2 Platform, Standard Edition (J2SE) Software Developers Kit (SDK) and Java Runtime Environment (JRE) 1.4.2_09, or J2SE Developers Kit (JDK) and JRE 5.0 Update 4 to protectthemselves against these vulnerabilities.

IBM also reported that the same vulnerabilities exist in IBM Java SDK. IBM recommends that people upgrade to IBM SDK 1.4.2 Service Release 3 (SR3) or IBM SDK 1.3.1 SR9.

About the Author

ITPro Today

ITPro Today

See more from ITPro Today
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
Newsletter Sign-Up

You May Also Like

Editor's Choice

a digital shield icon with a keyhole next to text that says linux kernel security
Vulnerabilities & Threats
Linux Kernel Exploits: How Attackers Gain Root Access and How To Defend Against It
Linux Kernel Exploits: Common Threats and How To Prevent Them

Oct 8, 2024

DevOps warning sign in front of gray sky
DevOps
How to Avoid Hidden DevOps Costs and Optimize for Efficiency
How to Avoid Hidden DevOps Costs and Optimize for Efficiency

Oct 9, 2024

a phone call between two business people reveals that one of them is a deepfake scammer
Vulnerabilities & Threats
We’re Worried About Deepfake Voice Scams. How Do We Protect Employees?
We’re Worried About Deepfake Voice Scams. How Do We Protect Employees?

Oct 4, 2024

Exclusive ITPro Resources
See all ITPro Resources

Featured Technical Explainers

multicloud concept
Cloud Computing
Cross-Cloud: The Next Evolution in Cloud Computing?
Cross-Cloud: The Next Evolution in Cloud Computing?
Wi-Fi 6 speed logo glowing on virtual screen while businessperson points hand and using laptop computer.
IT Operations
Wi-Fi 6: A Step Forward, But Wired LAN Still Holds the Crown
Wi-Fi 6: A Step Forward, But Wired LAN Still Holds the Crown
American flag in front of a government building
IT Operations
Pros and Cons of Government IT Jobs
Pros and Cons of Government IT Jobs
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
Newsletter Sign-Up

Recent What Is

cartoon shows a person next to a checklist and several icons that represent disaster scenarios
Disaster Recovery
BCDR Basics: A Quick Reference Guide for Business Continuity & Disaster RecoveryBCDR Basics: A Quick Reference Guide for IT Pros
technology interface with a person's hand drawing gears and cogs
PowerShell
Introduction To PowerShell Environment VariablesIntroduction To PowerShell Environment Variables