1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Sun Java Webstart BasicServiceImpl CVE-2010-3563

Web Attack: Sun Java Webstart BasicServiceImpl CVE-2010-3563

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature will detect attempts to exploit a remote command execution vulnerability in Sun Java.

Additional Information

Oracle Java SE and Java for Business are prone to a remote vulnerability in Java Web Start 'BasicServiceImpl'.

The vulnerability exists in the 'com.sun.jnlp.BasicServiceImpl' class. It is possible to exploit the vulnerability when Java Web Start retrieves security policies, allowing an attacker to provide their own security policies that remove restrictions that would ordinarily be applied in the Java sandbox. The vulnerability can be exploited to escape the Java sandbox and run arbitrary code in the context of the Java Runtime.


This vulnerability affects the following supported versions:

6 Update 21

Affected

  • This vulnerability affects the following supported versions:
  • 6 Update 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube