‘Sun Java Web Start BasicServiceImpl Code Execution Vulnerability’
‘The information has been provided by Matthias Kaiser .
The original article can be found at: http://www.zerodayinitiative.com/advisories/ZDI-10-202/‘
* Sun Microsystems Java Runtime
User interaction is required in that a target must visit a malicious page.
The specific flaw exists within the com.sun.jnlp.BasicServiceImpl class. By abusing how Web Start retrieves security policies, an attacker can forge their own and force the removal of sandbox restrictions. Successful exploitation leads to code execution under the context of the user running the browser.
Sun Microsystems has issued an update to correct this vulnerability at:
2010-04-05 – Vulnerability reported to vendor
2010-10-12 – Coordinated public release of advisory’