Page All:
Page 1
Critical warning. You didn't think you would go this week without it? Did you?
Goto Windows U
Critical warning. You didn't think you would go this week without it? Did you?
Quote
The most serious of the security holes "could enable an attackers Java applet to gain control over another users system," according to the alert. "This would enable the attacker to take any desired action on the users system; for instance, the attacker could add, delete or change data on the users system; communicate with Web sites; load and run programs; reformat the hard drive, and so forth."
The exploit is possible because of a flaw in the way Microsoft's JVM handles software written to Microsofts Component Object Model (COM). "Although the Microsoft (JVM) has security checks to prevent Java applets from invoking COM objects, there is a method of invoking them that bypasses the checks," according to the security bulletin.
A hacker could use a Web site or HTML-based e-mail to begin the attack.
Goto Windows U