ZDNet

Java unserialize remote code execution hole hits Commons Collections, JBoss, WebSphere, WebLogic

Researchers from Foxglove Security have reportedly discovered a remote code execution hole in the widely used Apache Commons library, thanks to the insecure method in which Java unserializes objects, ...
InfoQ

New LiveRecorder for Java Enables Software Failure Replay

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. This article dives into the happens-before ...
WeLiveSecurity

Java the Hutt meets CVE-2012-1723: the Evil Empire strikes back

In one of my previous posts I described how the CVE-2012-1889 vulnerability (CVE2012-1889: MSXML use-after-free vulnerability) works, but the Java exploitation process is too easy for the bad guys not ...
adtmag.com

Java & .NET can live together

With Microsoft throwing its formidable weight behind .NET services, there is little doubt that people will begin using it. But this will not make Java go away. Like the hardy mainframe, which not only ...