CVE-2007-4381
Sun JDK < 1.5.0 and JRE < 1.4.2 and SDK < 1.4.2_14 - Unauthenticated Privilege Escalation via Font Parsing
Title source: manualExploitation Summary
EIP tracks 1 public exploit for CVE-2007-4381. PoCs published by John Heasman.
AI-analyzed exploit summary The provided text describes a remote privilege-escalation vulnerability in the Sun Java Runtime Environment (CVE-2007-4381), allowing arbitrary code execution via a malicious Java applet. No actual exploit code is present; only a reference to a binary exploit is provided.
Description
Unspecified vulnerability in the font parsing implementation in Sun JDK and JRE 5.0 Update 9 and earlier, and SDK and JRE 1.4.2_14 and earlier, allows remote attackers to perform unauthorized actions via an applet that grants certain privileges to itself.
Exploits (1)
The provided text describes a remote privilege-escalation vulnerability in the Sun Java Runtime Environment (CVE-2007-4381), allowing arbitrary code execution via a malicious Java applet. No actual exploit code is present; only a reference to a binary exploit is provided.