Packet Storm Exploit 2013-0819-1 – Oracle Java BytePackedRaster.verify() Signed Integer Overflow

Posted by deepcore on August 19, 2013 – 11:28 pm

The BytePackedRaster.verify() method in Oracle Java versions prior to 7u25 is vulnerable to a signed integer overflow that allows bypassing of “dataBitOffset” boundary checks. This exploit code demonstrates remote code execution by popping calc.exe

Continue reading here:
Packet Storm Exploit 2013-0819-1 – Oracle Java BytePackedRaster.verify() Signed Integer Overflow

Tags: exploit, Security
This post is under “Apple, exploit, facebook, iphone, m$, OSX security tools, Privacy, Security, tools, twitter, XSS” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« http://www.koksawang.go.th/index.php Packet Storm Advisory 2013-0819-1 – Oracle Java BytePackedRaster.verify() »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Packet Storm Exploit 2013-0819-1 – Oracle Java BytePackedRaster.verify() Signed Integer Overflow

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL