Deepak Bhole

**Name of the Vulnerable Software and Affected Versions** IcedTea-Web versions 1.0.x through 1.0.5 IcedTea-Web versions 1.1.x through 1.1.3 **Description** The issue allows remote attackers to bypass the Same Origin Policy (SOP) and execute arbitrary script or establish network connections to unintended hosts. This is achieved via an applet whose origin has the same second-level domain, but a different sub-domain than the targeted domain. **Recommendations** For IcedTea-Web versions 1.0.x through 1.0.5, update to version 1.0.6 or later. For IcedTea-Web versions 1.1.x through 1.1.3, update to version 1.1.4 or later.