CVE-2012-5076

Oracle Java SE Sandbox Bypass Vulnerability

Description

The default Java security properties configuration did not restrict access to the com.sun.org.glassfish.external and com.sun.org.glassfish.gmbal packages. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions.

Severity: CRITICAL

CVSS Score: 9.8

Vendor: Oracle

Product: Java SE