| VID |
28084 |
| Severity |
30 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
A Java SDK or JRE version 1.4.2_03 or prior has been detected as running on the target Windows host.
Sun Microsystems' Java Virtual Machine, as included in Java Runtime Environment (JRE) and Software Development Kit (SDK), is vulnerable to a denial of service attack. This vulnerability may allow a remote unprivileged user to cause the Java Virtual Machine to become unresponsive resulting in a Denial of Service (DoS) condition.
* References:
http://www.kb.cert.org/vuls/id/118558
http://secunia.com/advisories/11570/
* Platforms Affected:
Sun Sun JRE 1.4.2 - 1.4.2_03
Sun Sun SDK 1.4.2 - 1.4.2_03
Microsoft Windows Any version
Linux Any version
Sun Solaris Any version
HP HP-UX Any version |
| Recommendation |
Upgrade to the latest version of SDK or JRE (1.4.2_04 or later), as listed in Sun Alert Notification 57555 at http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F57555&zone_32=security |
| Related URL |
CVE-2004-0651 (CVE) |
| Related URL |
10301 (SecurityFocus) |
| Related URL |
16085 (ISS) |
|
