View Single Post
  #2   (View Single Post)  
Old 29th August 2012
J65nko J65nko is offline
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 3,503

From The new Java 0Day examined

According to Michael Schierl, who has discovered several Java holes himself, the code's secret is that it does something which it isn't allowed to do: it uses the internal sun.awt.SunToolkit class to disable the SecurityManager, and ultimately the sandbox of Java.
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote