Sign-up

ID

VAR-200010-0136


CVE

CVE-2000-0563


TITLE

java.net.URLConnection Branch program direct connection vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200010-123

DESCRIPTION

The URLConnection function in MacOS Runtime Java (MRJ) 2.1 and earlier and the Microsoft virtual machine (VM) for MacOS allows a malicious web site operator to connect to arbitrary hosts using a HTTP redirection, in violation of the Java security model. The security model of Apple Mac OS Runtime Java (MRJ) is ignored in the function java.net.URLConnection. Therefore, it is possible to connect directly to any host whereas an applet should only be able to connect to the host that it originated from. Hiromitsu Takagi <takagi@etl.go.jp> illustrates in the following article the dangers of any host being accessed: http://java-house.etl.go.jp/ml/archive/j-h-b/033470.html A malicious website operator could set up applets which could lend itself to download sensitive information in any data format given that the file and path is known. This vulnerability depends on the combination of MRJ and browser version the system is running. To check whether or not your machine is vulnerable, make note of what version of browser and MRJ you are running and visit the following URL: http://java-house.etl.go.jp/ml/archive/j-h-b/033471.html

Trust: 1.26

sources: NVD: CVE-2000-0563 // BID: 1336 // VULHUB: VHN-2140

AFFECTED PRODUCTS

vendor:applemodel:mac os runtime for javascope:lteversion:2.1

Trust: 1.0

vendor:applemodel:mac os runtime for javascope:eqversion:2.1

Trust: 0.6

vendor:alexander clauss icabmodel:prescope:eqversion:2.0

Trust: 0.3

sources: BID: 1336 // CNNVD: CNNVD-200010-123 // NVD: CVE-2000-0563

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2000-0563
value: HIGH

Trust: 1.0

CNNVD: CNNVD-200010-123
value: CRITICAL

Trust: 0.6

VULHUB: VHN-2140
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2000-0563
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-2140
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-2140 // CNNVD: CNNVD-200010-123 // NVD: CVE-2000-0563

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2000-0563

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200010-123

TYPE

Boundary Condition Error

Trust: 0.9

sources: BID: 1336 // CNNVD: CNNVD-200010-123

EXPLOIT AVAILABILITY

sources:
            
            
            VULHUB: VHN-2140

EXTERNAL IDS
db:NVDid:CVE-2000-0563
Trust: 2.0
db:BIDid:1336
Trust: 2.0
db:CNNVDid:CNNVD-200010-123
Trust: 0.7
db:BUGTRAQid:20000609 SECURITY HOLES FOUND IN URLCONNECTION OF MRJ AND IE OF MAC OS (WAS RE: REAPPEARANCE OF AN OLD IE SECURITY BUG)
Trust: 0.6
db:BUGTRAQid:20000513 RE: REAPPEARANCE OF AN OLD IE SECURITY BUG
Trust: 0.6
db:VULHUBid:VHN-2140
Trust: 0.1
sources:
            
            
            VULHUB: VHN-2140 // 
            
            
            
            BID: 1336 // 
            
            
            
            CNNVD: CNNVD-200010-123 // 
            
            
            
            NVD: CVE-2000-0563

REFERENCES
url:http://www.securityfocus.com/bid/1336
Trust: 1.7
url:http://archives.neohapsis.com/archives/bugtraq/2000-06/0056.html
Trust: 1.7
url:http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-05-8&msg=391c95de2da.5e3btakagi%40java-house.etl.go.jp
Trust: 1.0
url:http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-05-8&msg=391c95de2da.5e3btakagi@java-house.etl.go.jp
Trust: 0.6
url:http://java-house.etl.go.jp/ml/archive/j-h-b/033470.html
Trust: 0.3
url:http://java-house.etl.go.jp/~takagi/java/test/urlconnection-direct/test.html
Trust: 0.3
url:http://java-house.etl.go.jp/ml/archive/j-h-b/033471.html
Trust: 0.3
url:http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-05-8&msg=391c95de2da.5e3btakagi@java-house.etl.go.jp
Trust: 0.1
sources:
            
            
            VULHUB: VHN-2140 // 
            
            
            
            BID: 1336 // 
            
            
            
            CNNVD: CNNVD-200010-123 // 
            
            
            
            NVD: CVE-2000-0563

CREDITS
Original bug posted to Bugtraq by Ben Mesander <bam@dimensional.com> on April 16, 2000.  Additional information provided by Hiromitsu Takagi <takagi@etl.go.jp> on June 10, 2000.
Trust: 0.9
sources:
            
            
            BID: 1336 // 
            
            
            
            CNNVD: CNNVD-200010-123

SOURCES
db:VULHUBid:VHN-2140
db:BIDid:1336
db:CNNVDid:CNNVD-200010-123
db:NVDid:CVE-2000-0563

LAST UPDATE DATE
2024-08-14T14:53:59.942000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-2140date:2008-09-05T00:00:00
db:BIDid:1336date:2009-07-11T02:56:00
db:CNNVDid:CNNVD-200010-123date:2005-10-20T00:00:00
db:NVDid:CVE-2000-0563date:2023-11-07T01:55:20.380

SOURCES RELEASE DATE
db:VULHUBid:VHN-2140date:2000-10-20T00:00:00
db:BIDid:1336date:2000-06-10T00:00:00
db:CNNVDid:CNNVD-200010-123date:2000-10-20T00:00:00
db:NVDid:CVE-2000-0563date:2000-10-20T04:00:00