VULHUB ™

The MRJ fails to properly enforce the security controls of the Java runtime environment when the values of the ARCHIVE parameter and the CODEBASE parameter conflict. This may allow a malicious Java applet downloaded from a website to access the local filesystem or unauthorized websites when executed. Properly exploited, this vulnerability can allow an attacker to further compromise the security of the affected host.

The MRJ fails to properly enforce the security controls of the Java runtime environment when the values of the ARCHIVE parameter and the CODEBASE parameter conflict. This may allow a malicious Java applet downloaded from a website to access the local filesystem or unauthorized websites when executed. Properly exploited, this vulnerability can allow an attacker to further compromise the security of the affected host.