Apparently, there are some high risk vulnerabilities in the Java Web Start software. According to FrSIRT, who released an advisory today, this could lead to bypass and remote code execution.
A vulnerability has been identified in Java Web Start, which could be exploited by remote attackers to take complete control of an affected system. This issue is caused by an unspecified error when using system classes, which could be exploited by malicious web sites to cause an untrusted application to elevate its privileges and gain permissions to read and write local files with the privileges of the user running the Java Web Start application.
Tags: Java Web Start, Jave Vulnerability, Remote Exploit
