| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <08EE7A6A-7D71-482A-8B3C-EBEB87165DEC@acrossecurity.com> Date: Sat, 9 Jul 2011 10:15:06 +0200 From: Mitja Kolsek <mitja.kolsek@...ossecurity.com> To: Tim <tim-security@...tinelchicken.org> Cc: "full-disclosure@...ts.grok.org.uk" <full-disclosure@...ts.grok.org.uk>, "security@...ossecurity.com" <security@...ossecurity.com> Subject: Re: Binary Planting Goes "Any File Type" Tim, We haven't, but I like your idea. However, if this is possible via applet parameters, I would be very disappointed that it hasn't been found/reported already. Or has everyone already given up on Java security? ;) Mitja On Jul 8, 2011, at 9:41 PM, Tim <tim-security@...tinelchicken.org> wrote: > Mitja, > > A question/suggestion: > > Have you guys tried influencing where the .hotspotrc files are loaded > from by supplying your own System properties (e.g. "user.dir")? You > can do this in .jnlp files and probably applet tags as well. This has > allowed for JRE RCE in the past. > > If there is a way to influence it, then you would have a more solid > RCE vector. > > tim > _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists