Lucene search
K

13 matches found

ThreatPost
ThreatPost
added 2014/12/08 10:41 a.m.10 views

Several Vulnerabilities Found in Google App Engine

A group of security researchers in Poland say they have discovered a long list of vulnerabilities in the Google App Engine, some of which enable an attacker to escape the Java sandbox. The researchers at Security Explorations say that they have found more than 30 vulnerabilities in the App Engine...

0.1AI score
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.93 views

Java AtomicReferenceArray Type Violation Vulnerability

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

10CVSS0.2AI score0.98113EPSS
Exploits13
RedHat Linux
RedHat Linux
added 2013/04/18 6:18 p.m.4 views

JDK: unspecified sanbox bypass (CanSecWest 2013, 2D)

The Java Runtime Environment JRE component in Oracle Java SE 7 Update 17 and earlier, 6 Update 43 and earlier, 5.0 Update 41 and earlier, and JavaFX 2.2.7 and earlier allows remote attackers to execute arbitrary code via vectors related to 2D, as demonstrated by Joshua Drake during a Pwn2Own...

10CVSS6.9AI score0.16422EPSS
Exploits1References4
ThreatPost
ThreatPost
added 2012/07/16 1:54 p.m.95 views

Black Hole Exploit Kit Targeting Java CVE-2012-1723 Flaw

A new fork of the Black Hole exploit kit is making quick work of a recently patched Java vulnerability and security researchers say that the attackers are registering new sites quickly to exploit users with vulnerable browsers. The CVE-2012-1723 Java vulnerability that the Black Hole exploit kit ...

10CVSS9.7AI score0.93688EPSS
Exploits9References8
Exploit DB
Exploit DB
added 2012/07/11 12:0 a.m.55 views

Java Applet - Field Bytecode Verifier Cache Remote Code Execution (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 false def initiali...

10CVSS9.9AI score0.93688EPSS
Exploits9
0day.today
0day.today
added 2012/07/10 12:0 a.m.42 views

Java Applet Field Bytecode Verifier Cache Remote Code Execution

Exploit for java platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/...

7.1AI score0.93688EPSS
Exploits9
Saint
Saint
added 2012/03/30 12:0 a.m.72 views

Java SE AtomicReferenceArray Unsafe Security Bypass

Added: 03/30/2012 CVE: CVE-2012-0507 BID: 52161 OSVDB: 80724 Background Java is a programming language that compiles programs to bytecode, which is then executed inside a Java Virtual Machine. This is optimal for applications that must run on various hardware platforms, such as web applets. Java...

10CVSS9.7AI score0.98113EPSS
Exploits13
Saint
Saint
added 2012/03/30 12:0 a.m.81 views

Java SE AtomicReferenceArray Unsafe Security Bypass

Added: 03/30/2012 CVE: CVE-2012-0507 BID: 52161 OSVDB: 80724 Background Java is a programming language that compiles programs to bytecode, which is then executed inside a Java Virtual Machine. This is optimal for applications that must run on various hardware platforms, such as web applets. Java...

10CVSS9.8AI score0.98113EPSS
Exploits13
Packet Storm
Packet Storm
added 2012/03/30 12:0 a.m.81 views

Java AtomicReferenceArray Type Violation

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' require 'rex' class Metasploit3 'Jav...

10CVSS0.2AI score0.98113EPSS
Exploits13
Exploit DB
Exploit DB
added 2012/03/30 12:0 a.m.119 views

Java - AtomicReferenceArray Type Violation (Metasploit)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' require 'rex' class Metasploit3 'Jav...

10CVSS9.9AI score0.98113EPSS
Exploits13
Saint
Saint
added 2012/03/30 12:0 a.m.68 views

Java SE AtomicReferenceArray Unsafe Security Bypass

Added: 03/30/2012 CVE: CVE-2012-0507 BID: 52161 OSVDB: 80724 Background Java is a programming language that compiles programs to bytecode, which is then executed inside a Java Virtual Machine. This is optimal for applications that must run on various hardware platforms, such as web applets. Java...

10CVSS9.8AI score0.98113EPSS
Exploits13
Metasploit
Metasploit
added 2012/03/29 3:31 p.m.64 views

Java AtomicReferenceArray Type Violation Vulnerability

This module exploits a vulnerability due to the fact that AtomicReferenceArray uses the Unsafe class to store a reference in an array directly, which may violate type safety if not used properly. This allows a way to escape the JRE sandbox, and load additional classes in order to perform maliciou...

9.8CVSS9.8AI score0.98113EPSS
Exploits13
Zero Day Initiative
Zero Day Initiative
added 2011/02/15 12:0 a.m.38 views

Oracle Java Webstart Trusted JNLP Extension Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle's Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

9.7CVSS4.3AI score0.02415EPSS
Exploits0References1
Rows per page
Query Builder