Security?

Roy points out this paper:

http://www.cs.princeton.edu/~sudhakar/papers/memerr.pdf

It is about using memory errors to compromise .NET / Java Virtual Machines (of course, it could be used to compromize anything, but the significance here is that you can overcome the type checking system in .NET / Java to allow unsafe code to run). Maybe I just get a kick out of this type of thing, but  his is probably one of the most interesting articles I have ever read