Sun Plugs Highly Critical Java Vulnerability
Tipping Point alerted Sun about the flaw six months ago.
Sun ALERT 102760 has labeled the flaw as a security vulnerability in processing GIF images in Java that could possibly allow an untrusted applet to elevate privileges.
The flaw stems from a buffer overflow vulnerability in how Java processes GIF images.
"For example, an applet may grant itself permissions to read and write local files or execute local applications with the privileges of the user running the untrusted applet," Sun's advisory warns.