InfoWorld

Call on extensible RMI

The ability to invoke methods on one Java object from objects residing in another JVM has been a standard Java feature since the JDK 1.1 release. The Remote Method Invocation (RMI) framework makes a ...
ZDNet

Java unserialize remote code execution hole hits Commons Collections, JBoss, WebSphere ...

Researchers from Foxglove Security have reportedly discovered a remote code execution hole in the widely used Apache Commons library, thanks to the insecure method in which Java unserializes objects, ...