DescriptionThe JNLPClassLoader class in IcedTea-Web before 1.0.1, as used in OpenJDK Runtime Environment 1.6.0, allows remote attackers to gain privileges via unknown vectors related to multiple signers and the assignment of "an inappropriate security descriptor."
Overall state of this security issue: Resolved
This issue is currently rated as having important severity.
|National Vulnerability Database|
SUSE Security Advisories:
- openSUSE-SU-2011:0155-1, published Sat, 5 Mar 2011 17:08:18 +0100 (CET)
SUSE Timeline for this CVECVE page created: Fri Jun 28 04:27:04 2013
CVE page last modified: Mon Feb 13 11:32:08 2023