Here is a particularly nasty problem with Sun’s JRE. There are no specifics provided but, it won’t take long before there is a PoC on milw0rm.com I would imagine.
From Secunia:
Description:
A vulnerability has been reported in Sun JRE, which can be exploited by malicious people to compromise a user’s system.The vulnerability is caused due to an unspecified error within the handling of Java applets. This can be exploited by malicious, untrusted applets to read and write local files, or to execute local applications.
The vulnerability is reported in the following products:
* JDK and JRE 6 Update 2 and earlier
* JDK and JRE 5.0 Update 12 and earlier
* SDK and JRE 1.4.2_15 and earlier
* SDK and JRE 1.3.1_20 and earlier
[tags]Sun JRE Vulnerability, Java Vulnerability[/tags]