Showing posts with label Tutorial. Show all posts
Showing posts with label Tutorial. Show all posts

Thursday, August 15, 2013

Exploiting CVE-2013-2460 Java Applet ProviderSkeleton Insecure Invoke Method Tutorial


CVE-2013-2460 Java Applet ProviderSkeleton Insecure Invoke Method

This Metasploit module abuses the insecure invoke() method of the ProviderSkeleton class that allows to call arbitrary static methods with user supplied arguments. The vulnerability affects Java version 7u21 and earlier.
Read more »
Posted by at No comments:
Labels: , , , ,
Subscribe to: Comments (Atom)