Y
Hacker News
new
|
ask
|
show
|
jobs
by
znep
1651 days ago
While the specific exploit may not be possible in 8u191 and later, I am not convinced they are safe from all RCEs using this vulnerability. It does make it harder to exploit, and hit or miss depending on what is available in the classpath.
See
https://www.veracode.com/blog/research/exploiting-jndi-injec...