Linked by Thom Holwerda on Wed 10th Oct 2012 23:47 UTC, submitted by MOS6510
Java "Java is a programming language that allows developers to write once and deploy everywhere - from high-end gaming desktops to smartphones. Its OS-agnostic and widespread nature is one of its strongest selling points, but one area where it can fall flat is performance. Generally, Java applications are not going to perform as well as native applications written for a specific OS. However, thanks to Project Sumatra that performance gap may soon become less of an issue."
Thread beginning with comment 538311
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE[3]: Security
by JAlexoid on Thu 11th Oct 2012 12:25 UTC in reply to "RE[2]: Security"
JAlexoid
Member since:
2009-05-19

Except with Java, isn't the vulnerability potentially cross platform?

You have to break out of the sandbox and what you do afterwards is platform dependent.

Reply Parent Score: 2

RE[4]: Security
by kwan_e on Thu 11th Oct 2012 15:20 in reply to "RE[3]: Security"
kwan_e Member since:
2007-02-18

"Except with Java, isn't the vulnerability potentially cross platform?

You have to break out of the sandbox and what you do afterwards is platform dependent.
"

But does it? If a Java vulnerability allows the VM itself to be controlled, the exploit can just run Java code with full permissions.

Much like how in the past, MS Office's Visual Basic potentially allowed malware to run on a Mac (again, not a security expert, so I don't know if it ended up being just hype, like Y2K).

Reply Parent Score: 2

RE[5]: Security
by JAlexoid on Thu 11th Oct 2012 15:36 in reply to "RE[4]: Security"
JAlexoid Member since:
2009-05-19

Well you can't do anything useful for a malicious intent through Java.
(Unless you are going to send a few emails or something like it)

Edited 2012-10-11 15:36 UTC

Reply Parent Score: 2