Java 7 Applet Remote Code Execution

Posted by deepcore on August 28, 2012 – 3:51 am

This Metasploit module exploits a vulnerability in Java 7, which allows an attacker to run arbitrary Java code outside the sandbox. The vulnerability seems to be related to the use of the newly introduced ClassFinder#resolveClass in Java 7, which allows the sun.awt.SunToolkit class to be loaded and modified. Please note this flaw is also being exploited in the wild, and there is no patch from Oracle at this point

Read the original post:
Java 7 Applet Remote Code Execution

Tags: Apple, exploit, ubuntu
This post is under “Apple, exploit, facebook, iphone, m$, OSX security tools, Privacy, Security, tools, twitter, XSS” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« [dos] – Express Burn Plus v4.58 EBP Project File Handling Buffer Overflow PoC http://www.saolumsai.go.th/blue/loc.htm »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Java 7 Applet Remote Code Execution

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL