CVE-2001-1008

Currently unrated

Key Information:

Vendor: Oracle
Status: Jre; Java Plug-in
Vendor: CVE Published:; 31 August 2001

Summary

Java Plugin 1.4 for JRE 1.3 executes signed applets even if the certificate is expired, which could allow remote attackers to conduct unauthorized activities via an applet that has been signed by an expired certificate.

References

http://www.securityfocus.com/bid/3245

vdb-entryx_refsource_BID

http://www.iss.net/security_center/static/7048.php

vdb-entryx_refsource_XF

http://archives.neohapsis.com/archives/bugtraq/2001-08/03...

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability Reserved
Jan 31, 2002
Vulnerability published
Aug 31, 2001