JDK-4258899 : exitVM permission is always granted to applications
  • Type: Bug
  • Component: security-libs
  • Sub-Component: java.security
  • Affected Version: 1.3.0
  • Priority: P3
  • Status: Closed
  • Resolution: Duplicate
  • OS: solaris_7
  • CPU: generic
  • Submitted: 1999-08-02
  • Updated: 2002-04-17
  • Resolved: 1999-11-01
Related Reports
Duplicate :  
JDK-4286238 - exitVM security property not working
Description
All applications have the exitVM permission by default whether or not the policy file grants it. This can lead to a denial of service attack when downloaded code is run by the application.
Comments
EVALUATION See comments.
11-06-2004