Javaprxy.DLL COM Object Instantiation Heap Overflow Vulnerability

By Roger on July 3, 2005 4:39 PM |

Microsoft put out a bulletin last week warning of a denial of service in javaprxy.dll (part of the Microsoft JVM). Exploit code has been posted to the Internet which show that this vulnerability is more than a denial of service, it can allow an attack to run code in the context of the logged on user.

Microsoft has posted several mitigating steps at http://www.microsoft.com/technet/security/advisory/903144.mspx. The easiest such step is to set the activeX kill bit. With this method you dont have to worry about loss of functionality in other applications which use the MS JVM. The downside is that from my testing the denial of service exploit still occurs (memory usage) although it does not allow the malicious code to run.

Check out the MS article for other mitigation techniques.

Categories

Microsoft

About this Entry

This page contains a single entry by Roger published on July 3, 2005 4:39 PM.

When Disclaimers Attack was the previous entry in this blog.

Magic Quadrant for Email Boundary Security is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Subscribe to feed Subscribe to this blog's feed
Add to Google
Please contact me by leaving a comment where appropriate. Otherwise, you can click here to reveal an email address for me.
Got Backups? Get Safe Online Remember Rick Rescorla Powered by Movable Type 4.2-en

Search