Summary
This host is missing an important security update according to Java for Mac OS X 10.6 Update 5.
Impact
Successful exploitation may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user.
Impact Level: System/Application
Solution
Upgrade to Java for Mac OS X 10.6 Update 5,
For updates refer to http://support.apple.com/kb/HT4738
Insight
For more information on the vulnerabilities refer the below links.
Affected
Java for Mac OS X v10.6.6 and later or Mac OS X Server v10.6.6 and later.
References
Updated on 2017-03-28
Severity
Classification
-
CVE CVE-2011-0802, CVE-2011-0814, CVE-2011-0862, CVE-2011-0863, CVE-2011-0864, CVE-2011-0865, CVE-2011-0867, CVE-2011-0868, CVE-2011-0869, CVE-2011-0871, CVE-2011-0873 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Microsoft Office Remote Code Execution Vulnerability-2839571 (Mac OS X)
- Mac OS X v10.6.8 Multiple Vulnerabilities (2011-004)
- Microsoft Office Remote Code Execution Vulnerabilities-2949660 (Mac OS X)
- Apple MAC OS X v10.6.8 Safari Multiple Vulnerabilities
- Apple iTunes Remote Code Execution Vulnerability (Mac OS X)