Bugtraq mailing list archives

Re: open socket in java

From: lstein () cshl org (Lincoln Stein)
Date: Fri, 5 Feb 1999 09:09:25 -0500


Aviram Jenik writes:

nino wrote:

The implications are obvious. If any host can connect to the machine
running the aplet, you could tell java to do things like the boserver.
If
you have a completely open socket, its rock n' roll !


No, it's not.

Yes, you can connect to the open socket, but the applet can't do any I/O, so
it's basically harmless (just like any other applet).


The main issue, I think, is information leakage between the Web site
that uses the applet and the applet's author.  Consider this scenario:
a Bad Guy puts out a compiled applet in the public domain that seems
to do something innocent like chart business graphics. Some company
then picks up this applet and uses it to display its confidential
business plan to authorized hosts in branch offices.  Unbenknownst to
the company or the branch office, the applet has actually opened a
listen socket, has accepted a connection from the applet's original
author, and is currently transmitting the confidential information to
an untrusted host!

Lincoln

--
========================================================================
Lincoln D. Stein                           Cold Spring Harbor Laboratory
lstein () cshl org                                        Cold Spring Harbor, NY
========================================================================

Current thread:

open socket in java nino (Feb 03)
- <Possible follow-ups>
- Re: open socket in java Aviram Jenik (Feb 04)
  - Re: open socket in java Hale (Feb 05)
  - Re: open socket in java Lincoln Stein (Feb 05)
    - Re: open socket in java Tim Wright (Feb 09)
- Re: open socket in java Toby Chamberlain (Feb 04)
- Re: open socket in java Simon Kilvington (Feb 05)
- Re: open socket in java Posick, Steve (Feb 09)
- FW: open socket in java Nin|a405 (Feb 11)
- Re: open socket in java Simon Kilvington (Feb 12)