Full title: JRuby Sandbox 0.2.2 - Sandbox Escape 
Category: local exploits
Platform: linux
jruby-sandbox aims to allow safe execution of user given Ruby code within a JRuby [0] runtime. However via import of Java classes it is possible to circumvent those protections and execute arbitrary code outside the sandboxed environment. Versions 0.2.2 and below are affected.

# 0day.today @ http://0day.today/