New analysis of a zero-day Java exploit that surfaced last week indicates that it takes advantage of not one but two previously unknown vulnerabilities in the widely-used software.

The basic gist of it is that for this special 64-bit floating point value, the Java call Double.parseDouble (“2.2250738585072012e-308”) will get stuck in an infinite loop.