2 matches found
Oracle Java MBeanInstantiator.findClass Remote Code Execution - Ver2 (CVE-2013-0422)
A code execution vulnerability has been reported in Oracle Java. The vulnerability is due to an access control failure in the com.sun.jmx.mbeanserver package and in the invokeWithArguments method of the java.lang.invoke.MethodHandle class. A remote attacker could trigger this vulnerability by usi...
Oracle Java JmxMBeanServer Package Sandbox Breach (CVE-2013-0422)
Two vulnerabilities have been reported in Oracle Java that can be used to breach the security sandbox. The first vulnerability is due to an access control failure in the com.sun.jmx.mbeanserver package. The second vulnerability is due to an access control failure in the invokeWithArguments method...