Oracle Java ProviderSkeleton Remote Code Execution Exploit

This module exploits a vulnerability in Oracle Java. Abusing the insecure invoke() method of the ProviderSkeleton class that allows to call arbitrary static methods with user supplied arguments it is possible to execute arbitrary code.
Exploit type: 
Platform: 
Vulnerabilty ID: 
CVE-2013-2460
Product Version: 
2013 R1
Released Date: 
Friday, August 9, 2013 - 00:00