| VID |
28271 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
A version of Sun Java Runtime Environment which is older than JRE 1.6.0_19, 1.5.0_24 has been installed on the host. Or A version of Sun Java Runtime Environment which is older than SDK 1.4.2_26 has been installed on the host. Such versions are potentially affected by security issues in the following components
-ImageIO
-Java 2D
-JRE
-Java Web Start, Java Plug-in
-Pack200
-Sound
-JSSE
-HotSpot Server
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of this condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.oracle.com/technetwork/topics/security/whatsnew/index.html
* Platforms Affected:
Sun JRE versions 1.6.0_xx/1.5.0_xx prior to 1.6.0_19, 1.5.0_24
Sun SDK versions 1.4.2_xx prior to 1.4.2_26
Microsoft Windows Any version
Linux Any version |
| Recommendation |
Update to JDK / JRE 6 Update 19, JDK 5.0 Update 24, SDK 1.4.2_26 or
later and remove if necessary any affected versions. |
| Related URL |
CVE-2009-3555,CVE-2010-0082,CVE-2010-0084,CVE-2010-0085,CVE-2010-0087,CVE-2010-0088,CVE-2010-0089,CVE-2010-0090,CVE-2010-0091,CVE-2010-0092 (CVE) |
| Related URL |
36935,38973,39062,39065,39067,39068,39069,39070,39071,39072,39073,39075,39077,39078,39081,39082,39083,39084,39085,39086,39088,39089,39090,39091 (SecurityFocus) |
| Related URL |
(ISS) |
|
