Note: This is an archival copy of Security Sun Alert 200481 as previously published on http://sunsolve.sun.com.
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1000359.1.
Article ID : 1000359.1
Article Type : Sun Alerts (SURE)
Last reviewed : 2005-10-13
Audience : PUBLIC
Copyright Notice: Copyright © 2010, Oracle Corporation and/or its affiliates.

Netscape NSS Tools Vulnerability Affects Sun Java Enterprise System and Solaris

Category
Security

Release Phase
Resolved

Product
Solaris 9 Operating System
Solaris 10 Operating System
Sun Java Enterprise System 2003Q4
Sun Java Enterprise System 2005Q1
Sun Java Enterprise System 2004Q2

Bug Id
6302177

Date of Resolved Release
14-OCT-2005

Impact

A security vulnerability exists in the Netscape Network Security Services (NSS) tools "signtool" and "modutil". When either program attempts to "unzip" a maliciously constructed JAR, WAR, XPI or ZIP file, it is possible for code in that zip file to take over the running program and then perform tasks with the privilege of the user running the program.

This issue is described by the United States Computer Emergency Readiness Team at:

This issue is also described in CAN-2005-2096 at:


Contributing Factors

This issue can occur in the following releases:

SPARC Platform

  • Sun Java Enterprise System 2003Q4, 2004Q2 and 2005Q1 for Solaris 8 without patch 119209-05
  • Sun Java Enterprise System 2003Q4, 2004Q2 and 2005Q1 for Solaris 9 without patch 119211-05
  • Sun Java Enterprise System 2005Q1 for Solaris 10 without patch 119213-05
  • Solaris 9 without patch 119211-05
  • Solaris 10 without patch 119213-05

x86 Platform

  • Sun Java Enterprise System 2003Q4, 2004Q2 and 2005Q1 for Solaris 9 without patch 119212-05
  • Sun Java Enterprise System 2005Q1 for Solaris 10 without patch 119214-05
  • Solaris 9 without patch 119212-05
  • Solaris 10 without patch 119214-05

Symptoms

There are no visible symptoms that would indicate the described issue has been exploited.


Workaround

There is no workaround. Please see the "Resolution" section below.


Resolution

This issue is addressed in the following releases:

Sparc Platform

  • Sun Java Enterprise System 2003Q4, 2004Q2 and 2005Q1 for Solaris 8 with patch 119209-05 or later
  • Sun Java Enterprise System 2003Q4, 2004Q2 and 2005Q1 for Solaris 9 with patch 119211-05 or later
  • Sun Java Enterprise System 2005Q1 for Solaris 10 with patch 119213-05 or later
  • Solaris 9 with patch 119211-05 or later
  • Solaris 10 with patch 119213-05 or later

x86 Platform

  • Sun Java Enterprise System 2003Q4, 2004Q2 and 2005Q1 for Solaris 9 with patch 119212-05 or later
  • Sun Java Enterprise System 2005Q1 for Solaris 10 with patch 119214-05 or later
  • Solaris 9 with patch 119212-05 or later
  • Solaris 10 with patch 119214-05 or later


References

119209-05
119211-05
119212-05
119213-05
119214-05




Attachments
This solution has no attachment