The sun.rmi.transport.DGCImpl static initializer can execute at a point where arbitrary code is on the stack. The initializer creates a Target, which saves away the current access control context. When inbound connections for subsequent inbound DGC calls are accepted, the security manager checkAccept method will be called in that access control context. If, at the time DGCImpl is initialized, there happens to be code on the stack that does not have sufficient socket accept permissions (for example, dynamically downloaded code), incoming DGC connections will be refused.