JNLP

Time to update your JRE again

| | Java, JNLP, JRE, SSV
[ Edit: Brian Krebs of the Washington Post's Security Fix blog spoke to me about Java security. You can read his column here. ] Sun have just released JRE Version 6 Update ...
aut disce, aut discede

And For My Next Trick…

| | escaping, Java, JNLP, Sun Alert 233323, WAHH, web start
One of the examples given in the "Attacking Application Logic" chapter of The Web Application Hacker's Handbook is entitled "Escaping from Escaping". The prelude to the attack is that the developer has ...
aut disce, aut discede
Repurposing Attacks Against Java Applets

Repurposing Attacks Against Java Applets

| | always trust content, applet, Java, JNLP, JNLPAppletLauncher, repurposing, signed
If you read my review of the Web Application Hacker's Handbook you may remember I made the following point:The authors talk about repurposing ActiveX controls but do not mention that this also ...
aut disce, aut discede