Researchers Disclose Further Vulnerabilities in Google App Engine

18

May

2015

A Polish research group claims there are still several outstanding vulnerabilities in Google App Engines for Java, including three complete Java sandbox escapes. After three weeks of radio silence from Google, it decided to disclose on Friday the vulnerabilities, along with proof of concept code.

The code doesn’t break the sandbox, but does result in partial GAE bypass and could allow an attacker to gain access to GAE’s Java environment.

Archives

Archives

About Us

Our mission is to help users and also IT security passionate to reach relevant information related to cyber security.

This publication contains a lot of information and guidance on how to better protect your IT systems, data and activities from malicious factors, and also on how to safely navigate the Internet.

We look forward to hearing from you about cyber safety. Please let us know if there’s something specific you’re interested in learning about.

Contact Us

Name *
Your name is required

E-mail *
Email address entered is invalid

Please enter a message

Incorrect security code

The Latest in IT Security

Researchers Disclose Further Vulnerabilities in Google App Engine

Categories

Featured

Archives

Latest Comments

About Us

Contact Us