Sign In

Communications of the ACM

ACM TechNews

Java Applications Have Major Security Flaws

View as: Print Mobile App Share:
A young computer expert studying at an Internet security training center of the state-run Korea Information Technology Research Institute in Seoul.

The researchers said the weaknesses they found in Java pose potential risks to businesses, governments, and public authorities, with the potential for significant financial consequences.

Credit: Jung Yeon-Je/AFP/Getty Images

Widely-used Java applications examined by researchers led by Alexandre Bartel at Umeå University in Sweden were found to have major security vulnerabilities in their deserialization process, in which packaged information is restored to its previous state.

The study found the flow of bytes allows attackers to modify information during deserialization to gain control over the receiving system.

Said Bartel, "The problem is that the programmers seem to repeat the same mistakes over and over again and therefore reintroduce the vulnerabilities."

From Tech Times
View Full Article


Abstracts Copyright © 2024 SmithBucklin, Washington, DC, USA


No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account