Craig Wright just re-sent another e-mail to bugtraq explaining in details the problem. I see no mention of Java anywhere. It looks more like an input validation issue. Java or not, if input is not validated, security flaws appear!
__________________
"Any intelligent fool can make things bigger, more complex, and more violent. It takes a touch of genius -- and a lot of courage -- to move in the opposite direction."
|