Thread: Security Oracle plugs security holes: Updates for Java 1.4 to 7
View Single Post
  #1   (View Single Post)  
Old 21st February 2013
J65nko J65nko is offline
Administrator
  
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,132
Default Oracle plugs security holes: Updates for Java 1.4 to 7
From http://h-online.com/-1806784

Quote:
On Tuesday night, Oracle published the promised update for the emergency "Critical Patch Update" that the company released earlier than scheduled, three weeks ago. The update affects all Java runtime environments from version 1.4 up to and including the current version 7.

This update is designed to close three holes with the highest threat rating of 10. These vulnerabilities have the CVE identifiers CVE-2013-1484, CVE-2013-1486 and CVE-2013-1487 and can be exploited remotely without authentication. They affect libraries, deployment components and, once again, JMX; the Java Management Extensions were at the centre of the holes discovered by security researcher Adam Gowdiak.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote