Sandbox Restrictions Bypass
java is vulnerable to sandbox restrictions bypass. Lack of proper deserialization in an AccessController doPrivileged block allows remote attackers to bypass sandbox restrictions and execute arbitrary code via the readValue method of com.ibm.rmi.io.ValueHandlerPool.ValueHandlerSingleton class...