Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Java Runtime Environment (JRE) and Software Development Kit (SDK) 1.4.2 through 1.4.2_02 allows local users to overwrite arbitrary files via a symlink attack on (1) unpack.log, as created by the unpack program, or (2) .mailcap1 and .mime.types1, as created by the RPM program.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sun Java安装文件破坏漏洞
Vulnerability Description
Sun Java 2 SDK是一款Java实现平台。 Sun Java实现在安装过程中建立不安全临时文件,本地攻击者可以利用这个漏洞通过符号连接,对系统进行拒绝服务等攻击。 当在Linux上安装Java的时会有不安全临时外呢件建立。当下载Linux的.bin或rpm.bin安装程序后,允许.bin和接收许可或安装rpm时,Sun会调用自己的unpack程序进行解包,程序存储在/usr/java/j2re<version>/lib/unpack,在安装之后会删除,每次Unpack调用会建立临时文件/tmp/
CVSS Information
N/A
Vulnerability Type
N/A