The Rhino Script Engine of Oracle Java fails to properly check for permissions on JavaScript error objects. This flaw allows an unprivileged applet to escape the sandbox and execute arbitrary code on the target machine with the privileges of the current user.
CVE Link
Exploit Type - Old
Exploits/Client Side
Exploit Type
Product Name