Page History

...

Wiki Markup

[CVE-2008-5353 |http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5353] describes a Java vulnerability discovered in August 2008 by Sami Koivu \[[CVE 2008|AA. Bibliography#CVE 08]\]. Julien Tinnes subsequently wrote an exploit that allowed arbitrary code execution on multiple platforms that ran vulnerable versions of Java. The problem resulted from deserializing untrusted input from within a privileged context. The vulnerability involves the ({{sun.util.Calendar.Zoneinfo}}) object, which being a serializable class is deserialized by the {{readObject()}} method of the {{ObjectInputStream}} class.

...

<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="10efd9a9b9844753-aeaffd3c-402644cc-847489ef-10f80bbe884791b1799c7eba"><ac:plain-text-body><![CDATA[	[[API 2006	AA. Bibliography#API 06]]		]]></ac:plain-text-body></ac:structured-macro>
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="07fea29d18b06afe-26a520dd-4d7d4b8c-9f3bb3ac-e3f8e63769aae44cb73f9dc4"><ac:plain-text-body><![CDATA[	[[CVE 2008	AA. Bibliography#CVE 08]]	[CVE-2008-5353	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5353]	]]></ac:plain-text-body></ac:structured-macro>

...

Space shortcuts

Page tree

Versions Compared

Old Version 74

New Version 75

Key