Summary
This host is installed with Oracle Java JDK/JRE and is prone to multiple vulnerabilities.
Impact
Successful exploitation will allow attackers to manipulate or gain knowledge of sensitive information, bypass restrictions, cause a denial of service or compromise a vulnerable system.
Impact Level: System/Application
Solution
Upgrade to JDK/JRE version 6 Update 22
http://www.oracle.com/technetwork/java/javase/downloads/index-jsp-138363.html
or
Apply the patch from below link,
http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html
*****
NOTE: Ignore this warning if above mentioned patch is already applied.
*****
Insight
Multiple flaws are caused by errors in the 2D, CORBA, Deployment, JRE, Java Web Start, New Java Plug-in, Sound, Deployment Toolkit, JSSE, Kerberos, Networking, Swing, and JNDI components.
Affected
Oracle Java JDK/JRE version 6 Update 21 on windows
References
Severity
Classification
-
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Flash Player 9.0.115.0 and earlier vulnerability (Lin)
- Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Mac OS X)
- Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Mac OS X)
- Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Mac OS X)
- Adobe AIR Multiple Vulnerabilities-01 Dec13 (Mac OS X)