Internet Explorer "javaprxy.dll" Memory Corruption Vulnerability

Printable View

08-07-2005, 11:59 AM
Steve

Internet Explorer "javaprxy.dll" Memory Corruption Vulnerability

Good old Internet Exploder has a new "extremely critical" vulnerability listed on Secunia.

Quote:

The vulnerability is caused due to the javaprxy.dll COM object being instantiated incorrectly in Internet Explorer via the object tag. This can be exploited via a malicious web site to cause a memory corruption.

Successful exploitation allows execution of arbitrary code, but requires that the file "javaprxy.dll" exists on the system.

NOTE: "javaprxy.dll" is included with Microsoft Java Virtual Machine. Exploit code is publicly available.

The easy fix to this is to stop using a broken virtual machine and go and get Sun's version instead. :)
08-07-2005, 01:43 PM
iMc

Quote:

Originally Posted by Kez

Good old Internet Exploder has a new "extremely critical" vulnerability listed on Secunia.The easy fix to this is to stop using a broken virtual machine and go and get Sun's version instead. :)

One of the first things I do when installing Windows is get Sun Java. So much more stable. Never had a problem with it.
09-07-2005, 03:20 PM
Bull Dog

I've always done likewise, don't trust M$.

All times are GMT +1. The time now is 04:58 AM.

Powered by vBulletin® - Copyright © 2024 vBulletin Solutions, Inc. All rights reserved.
Content Relevant URLs by vBSEO

Copyright © 2020 HEXUS®. All rights reserved. Unauthorised reproduction strictly prohibited.