Reflection and Serialization in Java

News

Java plan prepares to restrict final field mutation - InfoWorld

Proposal would issue warnings about uses of deep reflection to mutate final flelds, preparing for a future Java release that disallows mutation of final fields by default.

Threat Post12y

Old Attack Exploits New Java Reflection API Flaw

Researchers have discovered a new vulnerability in the Java Reflection API that can be exploited by a decade-old attack. No Java component has had a bigger bull’s eye on its back this year than the ...

Semiconductor Engineering8y

Exploiting The Java Deserialization Vulnerability

Serialization is no exception to this rule, and attacks against serialization schemes are innumerable. Unfortunately, developers enticed by the efficiency and ease of reflection-based and native ...

PC World9y

PayPal is the latest victim of Java deserialization bugs in Web apps

PayPal has fixed a serious vulnerability in its back-end management system that could have allowed attackers to execute arbitrary commands on the server and potentially install a backdoor. The ...

Some results have been hidden because they may be inaccessible to you

Show inaccessible results