Java 1.4.2 before 1.4.2 Release 2 on Apple Mac OS X does not prevent multiple programs from opening the same port as a Java ServerSocket, which allows local users to operate a Java program that intercepts network data intended for the ServerSocket of a different Java program.
CVSS Score
5.0
EPSS Score
0.005
Published
2005-12-31
Sun Java 1.3.1, 1.4.1, and 1.4.2 allows local users to cause a denial of service (JVM crash), possibly by calling the ClassDepth function with a null parameter, which causes a crash instead of generating a null pointer exception.
CVSS Score
2.1
EPSS Score
0.001
Published
2003-12-31
The byte code verifier component of the Java Virtual Machine (JVM) allows remote execution through malicious web pages.
CVSS Score
7.5
EPSS Score
0.016
Published
1999-03-01
The Java Applet Security Manager implementation in Netscape Navigator 2.0 and Java Developer's Kit 1.0 allows an applet to connect to arbitrary hosts.
CVSS Score
7.5
EPSS Score
0.005
Published
1996-03-01
Page 2