1.4.204

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

sun

CWE-16

NVD

Published: 2005-12-31

Updated: 2024-11-21

Summary

The Java Plug-in 1.4.2_03 and 1.4.2_04 controls, and the 1.4.2_03 and 1.4.2_04 <applet> redirector controls, allow remote attackers to cause a denial of service (Internet Explorer crash) by creating a COM object of the class associated with the control's CLSID, which is not intended for use within Internet Explorer.

Vulnerable Configurations

Part	Description	Count
Application	Sun SUN Java Plug IN 1.4.2_04 SUN Java Plug IN 1.4.2_03	2

Common Weakness Enumeration (CWE)

CWE-16 - Configuration

References

http://www.securityfocus.com/archive/1/391803
http://www.securityfocus.com/archive/1/391803