|
Family: Windows --> Category: infos
Sun JRE Java Plug-in JavaScript Security Restriction Bypass Vulnerability Scan
Vulnerability Scan Summary Acertains the version of Java JRE plugin
Detailed Explanation for this Vulnerability Test
The remote host is using a vulnerable version of Sun Java Runtime
Plug-in, an addon to many web browser like Internet Explorer to
display java applets.
It has been reported that the Java JRE Plug-in Security can be bypassed.
As a result, a possible hacker may be able to exploit it by creating a malicious
Java applet to compromise the computer.
Additionally, a denial of service vulnerability is present in the remote
version of the JVM. A possible hacker could exploit it by creating an applet
which misuses the serialization API.
Solution: Upgrade to JRE 1.4.2_06 or 1.3.1_13
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|