Summary
This host is installed with Sun Java JDK/JRE and is prone to multiple vulnerabilities.
Impact
Successful exploitation could allows remote attacker to gain privileges via untrusted applet or Java Web Start application in the context of the affected system.
Impact Level: System/Application
Solution
Upgrade to JDK/JRE version 6 Update 15 or 5 Update 20 http://java.sun.com/javase/downloads/index.jsp
http://java.sun.com/javase/downloads/index_jdk5.jsp or
Apply the patch from below link,
http://sunsolve.sun.com/search/document.do?assetkey=1-21-125136-16-1 http://sunsolve.sun.com/search/document.do?assetkey=1-21-125139-16-1 http://sunsolve.sun.com/search/document.do?assetkey=1-21-118667-22-1
*****
NOTE: Ignore this warning if above mentioned patch is already applied.
*****
Insight
Refer to the reference links for more information on the vulnerabilities.
Affected
Sun Java JDK/JRE version 6 before Update 15 or 5.0 before Update 20
References
Severity
Classification
-
CVE CVE-2009-2475, CVE-2009-2670, CVE-2009-2671, CVE-2009-2672, CVE-2009-2673, CVE-2009-2675, CVE-2009-2689 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Windows)
- Adobe Flash Media Server multiple vulnerabilities
- Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Mac OS X)
- Adobe Acrobat Multiple Unspecified Vulnerabilities -01 May13 (Windows)
- Adobe Air Remote Code Execution Vulnerability -June13 (Windows)