Summary
This host is installed with Sun Java JDK/JRE and is prone to Multiple Vulnerabilities.
Impact
Successful exploitation allows remote attacker to cause XSS, arbitrary code execution, various buffer overflows, bypass security restrictions and can cause denial of service attacks inside the context of the affected system.
Impact Level: System
Solution
Upgrade to JRE version 6 Update 13
http://java.sun.com/javase/downloads/index.jsp
OR
Upgrade to JRE version 5 Update 18
http://java.sun.com/javase/downloads/index_jdk5.jsp OR
Upgrade to JRE version 1.4.2_20
http://java.sun.com/j2se/1.4.2/download.html
OR
Upgrade to JRE version 1.3.1_25
http://java.sun.com/j2se/1.3/download.html
Insight
For more information about vulnerabilities on Sun Java go through reference.
Affected
Sun Java JRE 6 Update 12 and prior.
Sun Java JRE 5.0 Update 17 and prior.
Sun Java JRE 1.4.2_19 and prior.
Sun Java JRE 1.3.1_24 and prior.
References
Severity
Classification
-
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- ClamAV Multiple Vulnerabilities (Linux)
- 7-Zip Unspecified Archive Handling Vulnerability (Linux)
- EMC NetWorker 'nsrexecd' RPC Packet Denial of Service Vulnerability
- Adobe Digital Edition Denial of Service Vulnerability (Windows)
- Google Chrome Multiple Denial of Service Vulnerabilities - March12 (Mac OS X)