CVE-2002-2022 Information

Description

Format string vulnerability in Kaffe OpenVM 1.0.6 and earlier allows local users to execute arbitrary code when a java.lang.NoClassDefFoundError is thrown via format specifiers in the forName attribute.

Reference

http://cert.uni-stuttgart.de/archive/vuln-dev/2002/03/msg00050.html http://www.iss.net/security_center/static/8399.php http://www.securityfocus.com/bid/4249