A constrained arena within which Java applications can be made to run, preventing for example, access to the local hard disk or to the network. The Java sandbox is used to provide security for downloading Java applets from the Web. Full-blown Java programs can also be restricted and perform only certain tasks depending on user, company policy and Java Virtual Machine version. See Java, Java applet and sandbox.
"Once we found that our complete Java sandbox bypass codes stopped working after the update was applied, we looked again at POC codes and started to think about the possible ways of how to fully break the latest Java update again," Gowdiak said.