CVE-2015-3253: groovy: remote execution of untrusted code in class MethodClosure

Severity: Critical

CVSS Score: 9.8

The MethodClosure class in runtime/MethodClosure.java in Apache Groovy 1.7.0 through 2.4.3 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted serialized object.