Vulnerabilities > SUN > Java WEB Start > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-11-04 | CVE-2008-4910 | Improper Input Validation vulnerability in SUN Java web Start The BasicService in Sun Java Web Start allows remote attackers to execute arbitrary programs on a client machine via a file:// URL argument to the showDocument method. | 10.0 |
| 2007-09-20 | CVE-2007-5019 | Buffer Errors vulnerability in SUN Java web Start, JRE and SDK Buffer overflow in the Sun Java Web Start ActiveX control in Java Runtime Environment (JRE) 1.6.0_X allows remote attackers to have an unknown impact via a long argument to the dnsResolve (isInstalled.dnsResolve) method. | 10.0 |