Download
| Alert*
oval:org.secpod.oval:def:19721
The host is installed with Oracle Java SE 6 before update 17 and is prone to arbitrary code execution vulnerability. A flaw is present in the applications, which fails to properly handle a crafted web page. Successful exploitation allows remote attackers to execute arbitrary commands. oval:org.secpod.oval:def:400070 The Sun Java 6 SDK/JRE was updated to u17 update fixing bugs and various security issues: CVE-2009-3866:The Java Web Start Installer in Sun Java SE in JDK and JRE 6 before Update 17 does not properly use security model permissions when removing installer extensions, which allows remote attackers to ... |