ClassLoader type confusion

• First Java 2 problem

  • Princeton’s SIP team

• Hole in the JVM ClassLoader

  • Exploitable as an attack applet only in Netscape 4.0x
  • Hole exists in all VMs
  • Classic type confusion
  • Override system classes

• Three flaws for the exploit

  • LaDue AppletClassLoader subclassing
  • System classes not looked for FIRST
  • Core bug in the JVM

Previous slide

Next slide

Back to first slide

View graphic version