Summary
This host is installed with Sun Java JDK/JRE and is prone to multiple vulnerabilities.
Impact
Successful exploitation could allows remote attacker to gain privileges via untrusted applet or Java Web Start application in the context of the affected system.
Impact Level: System/Application
Solution
Upgrade to JDK/JRE version 6 Update 15 or 5 Update 20 http://java.sun.com/javase/downloads/index.jsp
http://java.sun.com/javase/downloads/index_jdk5.jsp or
Apply the patch from below link,
http://sunsolve.sun.com/search/document.do?assetkey=1-21-125136-16-1 http://sunsolve.sun.com/search/document.do?assetkey=1-21-125139-16-1 http://sunsolve.sun.com/search/document.do?assetkey=1-21-118667-22-1
*****
NOTE: Ignore this warning if above mentioned patch is already applied.
*****
Insight
Refer to the reference links for more information on the vulnerabilities.
Affected
Sun Java JDK/JRE version 6 before Update 15 or 5.0 before Update 20
References
Severity
Classification
-
CVE CVE-2009-2475, CVE-2009-2670, CVE-2009-2671, CVE-2009-2672, CVE-2009-2673, CVE-2009-2675, CVE-2009-2689 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Air Multiple Vulnerabilities - October 12 (Mac OS X)
- Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Windows)
- Adobe Acrobat Multiple Vulnerabilities -01 Jan 13 (Windows)
- Adobe Acrobat Remote Code Execution Vulnerability(Win)
- Adobe Air and Flash Player Multiple Vulnerabilities (Mac OS X)