Full title: Avian JVM 1.2.0 Silent Return Exploit 
Category: local exploits
Platform: windows
Avian JVM version 1.2.0 suffers from a silent return issue in the vm::arrayCopy method defined in classpath-common.h, where multiple boundary checks are performed to prevent out-of-bounds memory read/write. One of these boundary checks makes the code return silently when a negative length is provided instead of throwing an exception.

# 0day.today @ http://0day.today/