DescriptionThe Java Web Start framework in IcedTea in OpenJDK before 126.96.36.199-20.b16.fc10 on Fedora 10, and before 188.8.131.52-27.b16.fc11 on Fedora 11, trusts an entire application when at least one of the listed jar files is trusted, which allows context-dependent attackers to execute arbitrary code without the untrusted-code restrictions via a crafted application, related to NetX.
Overall state of this security issue: Resolved
This issue is currently rated as having critical severity.
|National Vulnerability Database|
SUSE Timeline for this CVECVE page created: Fri Jun 28 06:51:11 2013
CVE page last modified: Fri Oct 7 12:45:47 2022