NEWS A German researcher at the University of Marburg has uncovered a security flaw in Microsoft's Java Virtual Machine (JVM). The flaw is a bug in Microsoft's bytecode verifier. According to Princeton University's Secure Internet Programming (SIP) unit, the bug allows for the creation of a malicious applet that can modify and delete files or eavesdrop on the user's activities. The explanation by Princeton's SIP team is on their site: "As of October 11, 1999, all recent versions of Microsoft's JVM for Windows appear to be vulnerable, so users of recent versions of Internet Explorer are affected by this flaw. A malicious applet could also be embedded in an e-mail message read using Microsoft Outlook." Microsoft has posted a new version of its JVM that it claims will eliminates the flaw at http://www.microsoft.com/java .
Flaw found in MS Java Virtual Machine
Post your comment
In order to post a comment you need to be registered and logged in.
You can also log in with Facebook. Log in or create your silicon.com account below
Get silicon.com's daily newsletter
-
Enter your email to register
Featured white papers
-
Deliver easy email search, storage and retrieval systems
Are you storing up trouble? There is a better way to manage corporate email storage, especially to: - Avoid...
-
Systems engineering: Best practice for development success
Systems engineering isn't just a technical activity in the product lifecycle—it determines the commercial viability of...
-
Securing the rise of the mobile apps market: Code signing and mobile application development
The emergence of mobile applications has fundamentally changed the way that millions of people around the world, play...
Keep in touch with silicon.com
-
Connect with silicon.com on Facebook
Discuss the news of the day with the silicon.com team
-
Follow silicon.com on Twitter
Get regular updates from the silicon.com editors
-
Join the silicon.com LinkedIn networking group
Network with your peers and share expertise
Latest jobs
-
Project Manager
Black Rock Studio [A division of Disney Interactive Media Group] is currently recruiting for a Project Manager to...
-
1st line Support- Croydon
My client- A large consultancy based in Croydon are looking for a 1st/2nd line helpdesk support candidate on an...
-
IT Security Specialist , Big Learning + Move into Pre-Sales
IT Security Specialist , Big Learning + Move into Pre-SalesSC Cleared, UK National - Intensive training offered on...
silicon.com newsletters
-
Stay up to date with silicon.com newsletters
Keep up with the latest news and analysis from silicon.com with our free email newsletters
