Threat Level: green Handler on Duty: Basil Alawi S.Taher

SANS ISC: InfoSec Handlers Diary Blog - Oracle Java SE and Java for Business 'MixerSequencer' Remote Code Execution Vulnerability InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Oracle Java SE and Java for Business 'MixerSequencer' Remote Code Execution Vulnerability

Published: 2010-05-23
Last Updated: 2010-05-23 20:51:37 UTC
by Manuel Humberto Santander Pelaez (Version: 1)
1 comment(s)

SecurityFocus has published Bugtraq ID 39077 vulnerability for Java SE and Java for Business , which allows attackers to remote execute code context of the user running the affected application.

Read the publication here: http://www.securityfocus.com/bid/39077

There is a great blog explaning the technical details. Read it here (by Peter Vreugdenhil): http://bit.ly/aM1J01

The solution is to update java to a non-vulnerable version. Please read http://www.securityfocus.com/bid/39077/info at bottom of the page.

-- Manuel Humberto Santander Peláez  |  http://twitter.com/manuelsantander  |  http://manuel.santander.name

1 comment(s)
Diary Archives