<p>A security researcher has published technical details and attack code for dozens of security flaws claimed to affect Oracle's Java Cloud Service, including some that could allow an attacker to remotely attack apps hosted in its data centres.</p><p>Security Explorations, a Poland-based company headed up by Java security specialist Adam Gowdiak, has spilled the beans on 30 flaws it says affect customers of Oracle's Java Cloud at its US and EMEA region data centres.</p><p>Gowdiak said he published details of the flaws after Oracle stopped corresponding with him over the issues. According to the researcher, while Oracle said it had developed fixes for 24 of vulnerabilities, the company didn't provide an update on when they would be released.</p><p>To turn up the heat on Oracle, Gowdiak also published nine proof-of-concept attack tools for 16 of the flaws relating to an insecure implementation of the Java Reflection API in a WebLogic Server environment.</p><p><a href="http://www.zdnet.com/attack-code-for-oracle-java-cloud-service-published-7000028015/">Keep reading...</a></p><p>Read also:</p><p><a href="http://www.pcworld.com/article/2139000/researchers-publicly-disclose-vulnerabilities-in-oracle-java-cloud-service.html">Researchers publicly disclose vulnerabilities in Oracle Java Cloud Service</a> (PCWorld)</p><p><a href="https://threatpost.com/researchers-divulge-30-oracle-java-cloud-service-bugs/105190">Researchers Divulge 30 Oracle Java Cloud Service Bugs</a> (Threatpost)</p><p>Explore: <a href="http://news.google.com/news/more?ncl=dCkX7obZNUHYXXM_oUIN5jYkSj_wM&authuser=0&ned=us">15 additional articles.</a></p>