Vulnerabilities

CVE-2012-3423

by Fred · 07/08/2012

The IcedTea-Web plugin before 1.2.1 does not properly handle NPVariant NPStrings without NUL terminators, which allows remote attackers to cause a denial of service (crash), obtain sensitive information from memory, or execute arbitrary code via a crafted Java applet.

Date published : 2012-08-07

http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=518

http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=863

Similar

Tags: Cybersecurity Alert