lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <40A0EF0A.4030405@dolphtech.com> From: mark at dolphtech.com (Mark W. Webb) Subject: info on JRE < 1.4.2_04 vulnerability I am trying to find information on a vulnerability that I found at securityfocus. Here is the URL for all the information... http://www.securityfocus.com/bid/10301/info/ http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F57555 I am confused, being a semi-newbie, how this can be a vulnerability without an exploit. Is it just that Sun does not want to admit that there is an exploit? Does anyone have any more information on this that they can provide? Thank you.