Note: This is an archival copy of Security Sun Alert 200481 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000359.1.
Solaris 9 Operating System
Solaris 10 Operating System
Sun Java Enterprise System 2003Q4
Sun Java Enterprise System 2005Q1
Sun Java Enterprise System 2004Q2
Date of Resolved Release
A security vulnerability exists in the Netscape Network Security Services (NSS) tools "signtool" and "modutil". When either program attempts to "unzip" a maliciously constructed JAR, WAR, XPI or ZIP file, it is possible for code in that zip file to take over the running program and then perform tasks with the privilege of the user running the program.
This issue is described by the United States Computer Emergency Readiness Team at:
This issue is also described in CAN-2005-2096 at:
This issue can occur in the following releases:
There are no visible symptoms that would indicate the described issue has been exploited.
There is no workaround. Please see the "Resolution" section below.
This issue is addressed in the following releases:
This solution has no attachment