Arbitrary Code Execution on Windows in Java Deployment Toolkit plugin (npdeployJava1.dll)
Reported by n...@nealpoole.com, Jun 17 2011
Jun 17 2011,
Wow, that's a nasty bug. Any idea why Oracle are waiting until October to fix this? Seems like a lackluster response. This is a textbook case for why the Chrome infobar for risky plug-ins is a very useful feature. I'm going to mark this WontFix for lack of a better status, since it sounds like the bug is fully inside the NPAPI Java Deployment Toolkit module? Thanks for giving us a heads up.
Jun 17 2011,
> Any idea why Oracle are waiting until October to fix this? Seems like a lackluster response. The bug was originally reported to them at the end of February. There were some issues replicating the finding which took until mid-March to resolve. I'm not sure why a fix didn't make it into their June release. > I'm going to mark this WontFix for lack of a better status, since it sounds like the bug is fully inside the NPAPI Java Deployment Toolkit module? Correct. Actually, I only realized today that Chrome on Windows even had the Deployment Toolkit plugin. I first identified the issue in Firefox, where it's potentially more serious since Java executes automatically. I filed a bug with Mozilla when I originally made the report in case they wanted to add the Deployment Toolkit plugin to their blocklist (It wouldn't be the first time either: https://bugzilla.mozilla.org/show_bug.cgi?id=558584). When I realized that Chrome users could have the same vulnerable plugin loaded, I figured I should file a bug here as well. :-)
Oct 13 2012,
This issue has been closed for some time. No one will pay attention to new comments. If you are seeing this bug or have new data, please click New Issue to start a new bug.
Mar 10 2013,
Mar 11 2013,
Mar 13 2013,
Jul 24 2013,
Nov 18 2013,
Bulk release of old security bug reports.
Feb 6 2014,
Bulk update: removing view restriction from closed bugs.
Oct 2 2016,
Sign in to add a comment