Bytecode level: for break in.
Model is attack a normal running Java process or a going to run Java applet. Maybe something like Inject.
1) escape sandbox (SecurityManager) from Applet, or from constraint, for example Load From Uncontrolled source with custom policy;
2) classLoader hijack;
Listing 1 (From dev doc of apple.com) A simple framework bundle
MyFramework.framework/ |
MyFramework -> Versions/Current/MyFramework
|
Resources -> Versions/Current/Resources
|
Versions/
|
A/
|
MyFramework
|
Resources/
|
English.lproj/
|
InfoPlist.strings
|
Info.plist
|
Current -> A
|
- (NSString *)myString { @synchronized(self) { return [[myString retain] autorelease]; } }
转换1:
注:简称《心经》,附(简单字面翻译)。
观自在菩萨(般若智慧已经达到自在境界的菩萨)
行深般若波罗蜜多时(当他修行般若智慧达到波罗蜜多觉悟境界的时候)
照见五蕴皆空(洞见色、受、想、行、识五蕴乃是人类虚空的妄想)
注:章句之序、断句为后人添加,不为原著。
1、乾坤者,易之门户,众卦之父母,坎离匡郭,运毂正轴。牝牡四卦,以为橐籥。
2、覆冒阴阳之道,犹工御者,准绳墨,执衔辔,正规矩,随轨辙,处中以制外,数在律历纪。
3、月节有五六,经纬奉日使。兼并为六十,刚柔有表里。朔旦屯直事,至暮蒙当受。昼夜各一卦,用之依次序。既未至晦爽,终则复更始。
4、日辰为期度,动静有早晚。春夏据内体,从子到辰巳。秋冬当外用,自午讫戌亥。