HTTP Redirection Vulnerability in MacOS Runtime Java by Apple
CVE-2000-0563

Currently unrated

Key Information:

Vendor: Apple
Status: Mac Os Runtime For Java
Vendor: CVE Published:; 20 October 2000

Summary

The URLConnection function in MacOS Runtime Java versions 2.1 and earlier and the Microsoft virtual machine for MacOS is susceptible to an HTTP redirection vulnerability. This flaw allows malicious websites to connect to arbitrary hosts by exploiting the Java security model. By leveraging this vulnerability, attackers can facilitate unauthorized access and data leakage, compromising the affected system’s integrity. It is essential for users and administrators to be aware of this issue and implement appropriate security measures.

References

http://archives.neohapsis.com/archives/bugtraq/2000-06/00...

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/1336

vdb-entryx_refsource_BID

http://www.securityfocus.com/templates/archive.pike?list=...

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Oct 20, 2000
Vulnerability Reserved
Jul 11, 2000