Looking at Sun's take on it and Secunia's links, there's a fun little exploit in Java's calendar objects that can allow a remote user to obtain escalated privileges, allowing them to read, write, and execute any files on your computer that you have access to. The interesting thing about this bug is that it doesn't depend on memory being set up a ( Read more... )

(found while reading the current XKCD RSS feed Edit: this RSS feed no longer contains the post I've linked to. See kitty_tape's comment for the right comic.)

Java's "random" number generator has some surprisingly simple patterns in it. Nearly all random number generators on computers are pseudo-random, meaning that they only seem random-ish and are not ( Read more... )