Summary
This host is installed with Sun Java JDK/JRE and is prone to Multiple Vulnerabilities.
Impact
Successful exploitation allows remote attacker to cause XSS, arbitrary code execution, various buffer overflows, bypass security restrictions and can cause denial of service attacks inside the context of the affected system.
Impact Level: System
Solution
Upgrade to JRE version 6 Update 13
http://java.sun.com/javase/downloads/index.jsp
OR
Upgrade to JRE version 5 Update 18
http://java.sun.com/javase/downloads/index_jdk5.jsp OR
Upgrade to JRE version 1.4.2_20
http://java.sun.com/j2se/1.4.2/download.html
OR
Upgrade to JRE version 1.3.1_25
http://java.sun.com/j2se/1.3/download.html
Insight
For more information about vulnerabilities on Sun Java go through reference.
Affected
Sun Java JRE 6 Update 12 and prior.
Sun Java JRE 5.0 Update 17 and prior.
Sun Java JRE 1.4.2_19 and prior.
Sun Java JRE 1.3.1_24 and prior.
References
Severity
Classification
-
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Active Perl Denial of Service Vulnerability (Windows)
- Colasoft Capsa Malformed SNMP V1 Packet Remote Denial of Service Vulnerability
- Adobe Flash Player/Air Multiple Vulnerabilities - August10 (Linux)
- Apache httpd Web Server Range Header Denial of Service Vulnerability
- FlashGet FTP PWD Response Remote Buffer Overflow Vulnerability