Java decompiler (jad) 1.5.8e – Stack-based buffer overflow analysis and PoC

This is an analysis of a vulnerability discovered by Juan Sacco. The vulnerability has no given CVE ID.

The interesting fact here is that at the time of writing, the latest version for linux-based systems is the vulnerable version.

Continue reading