|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Java Web start vulnerability
varun.srivastav
gmail.com
Date: Sat Oct 25 2008 - 03:18:16 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hi,
There is vulnerability in Java Web Start. Already there is some vulnerability posted for persistenceservice service of java web start. But in Basicservice also we can run any file on the client using showDocument method. Just give the URL of file on client computer. If the browser has software attached to run that filetype it will be run automatically without user knowledge.
Regards
Varun Srivastava
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]