Oracle Java Field Access Bytecode Verifier Cache Remote Code Execution Exploit

An error in the way the bytecode verifier of Java validates field access instructions when preparing to JIT-compile a method can be abused to cause a type confusion vulnerability. This flaw allows an unprivileged Java applet to escape the sandbox and execute arbitrary code on the target machine with the privileges of the current user.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2012-1723
Product Version: 
12.3
Released Date: 
Thursday, August 23, 2012 - 00:00