Java Entrepreneur

Java Application Development & Entrepreneurship

Vulnerability detected in Sun JDK, JRE and SDK

sun jdk vulnerability.gif

Another security threat has been identified and this time it has been detected in Sun JDK, JRE and SDK which attackers could exploit for causing DoS attack. It is caused as a result of error in Java Secure Socket Extension while processing certain SSL/TLS handshake requests which attackers could exploit for creating DoS on a vulnerable system.

The following products have been affected:

Sun JDK 6 Update 1 and prior
Sun JRE 6 Update 1 and prior
Sun JDK 5.0 Updates 7
Sun JDK 5.0 Updates 8
Sun JDK 5.0 Updates 9
Sun JDK 5.0 Updates 10
Sun JDK 5.0 Updates 11
Sun JRE 5.0 Updates 7
Sun JRE 5.0 Updates 8
Sun JRE 5.0 Updates 9
Sun JRE 5.0 Updates 10
Sun JRE 5.0 Updates 11
Sun SDK 1.4.2_11
Sun SDK 1.4.2_12
Sun SDK 1.4.2_13
Sun SDK 1.4.2_14
Sun JRE 1.4.2_11
Sun JRE 1.4.2_12
Sun JRE 1.4.2_13
Sun JRE 1.4.2_14

In order to solve this problem one should upgrade to JDK and JRE 6 Update 2 or JDK and JRE 5.0 Update 12, or SDK and JRE 1.4.2_15.

Leave a Reply

Java Entrepreneur © 2007. Theme Squared created by Rodrigo Ghedin.