Oracle Java SE and Java for Business JRE Trusted Method Chaining Remote Code Execution Vulnerability

Oracle Java SE and Java for Business are prone to a remote code-execution vulnerability affecting the Java Runtime Environment (JRE).

Attackers can exploit this to call trusted methods in an unsafe manner; this can be leveraged to execute arbitrary code with the privileges of the user invoking the JRE.

This vulnerability affects the following supported versions:
6 Update 18, 5.0 Update 23, 1.4.2_25


Privacy Statement
Copyright 2010, SecurityFocus