Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Bugtraq: Re: `Microsoft VM for Java' allows reading local files using `getSystemResourceAsStream'.

Re: `Microsoft VM for Java' allows reading local files using `getSystemResourceAsStream'.

From: Ari Gordon-Schlosberg <regs_at_NEBCORP.COM>
Date: Tue, 1 Feb 2000 17:50:55 -0600

["TAKAGI, Hiromitsu" <takagi_at_ETL.GO.JP>]
> Microsoft JVM allows reading local files using getSystemResourceAsStream.
> For a detailed description, please see the following article.
>

Verified with build 5.00.2314.1003 on Win98. Creepy. According to the
article above, IE 5 allows files under C:\Windows\Desktop to read, while IE
4 gives access to C:\ itself. Seems to me that there must be an a bug in
either java.lang.SecurityManager.checkRead(String,Object) or
java.lang.ClassLoader.getResourceAsStream(String). If it's the former,
this bug should be further exploitable to pretty much any file. Therefore,
most likely is that java.lang.ClassLoader.getResourceAsStream(String) is
either a) not calling java.lang.SecurityManager.checkRead(String,Object) at
all or b) passing it an incorrect context. 

--
Ari							there is no spoon
-------------------------------------------------------------------------
http://www.nebcorp.com/~regs/pgp for PGP public key
Received on Feb 02 2000
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos