Sun Java Runtime Environment Serialization Applets Privilege Escalation Vulnerabilities
Sun Java Runtime Environment, which could be exploited by attackers to bypass security restrictions and take complete control of an affected system. These issues are due to errors related to serialization, which could be exploited by attackers to read, write, or execute arbitrary files by tricking a user into visiting a specially crafted web page containing a malicious applet.

Affected Products

Sun Java JDK 1.5.x (for Windows, Solaris, and Linux)
Sun Java JRE 1.4.x (for Windows, Solaris, and Linux)
Sun Java JRE 1.5.x / 5.x (for Windows, Solaris, and Linux)
Sun Java SDK 1.4.x (for Windows, Solaris, and Linux)

Solution

Upgrade to JDK/JRE 5.0 Upgrade 8 or SDK/JRE 1.4.2_13 :
http://www.java.com
더보기

댓글,