Oracle Java SE Multiple Vulnerabilities (Windows) Network Vulnerability

Summary

This host is installed with Oracle Java JDK/JRE and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow attackers to manipulate or gain knowledge of sensitive information, bypass restrictions, cause a denial of service or compromise a vulnerable system. Impact Level: System/Application

Solution

Upgrade to JDK/JRE version 6 Update 22 http://www.oracle.com/technetwork/java/javase/downloads/index-jsp-138363.html or Apply the patch from below link, http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html ***** NOTE: Ignore this warning if above mentioned patch is already applied. *****

Insight

Multiple flaws are caused by errors in the 2D, CORBA, Deployment, JRE, Java Web Start, New Java Plug-in, Sound, Deployment Toolkit, JSSE, Kerberos, Networking, Swing, and JNDI components.

Affected

Oracle Java JDK/JRE version 6 Update 21 on windows

References

http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html
http://www.vupen.com/english/advisories/2010/2660

Updated on 2015-03-25

Severity

Classification

Related Vulnerabilities

Adobe Air Code Execution and DoS Vulnerabilities (MAC OS X)
Adobe Acrobat Multiple Vulnerabilities-01 Sep14 (Mac OS X)
Adobe AIR Multiple Vulnerabilities-01 Sep14 (Mac OS X)
Active Perl Locale::Maketext Module Multiple Code Injection Vulnerabilities (Windows)
Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Windows)

Take action and discover your vulnerabilities