Language Selection

English French German Italian Portuguese Spanish

Java flaws open door to hackers

Filed under
Security

The flaws are "highly critical," security monitoring company Secunia said in an advisory posted Tuesday. Flaws that get that ranking--one notch below Secunia's most severe "extremely critical" rating--are typically remotely exploitable and can lead to full system compromise.

Both flaws affect the Java Runtime Environment, or JRE. This is the Java software many computer users have on their system to run Java applications. The bugs could allow a Java application to read and write files or execute applications on a victim's computer, Sun said in two separate security advisories released Monday.

One is a general flaw in the JRE, while the other is specific to Java Web Start, a technology to load Java applications over a network such as the Internet.

The flaws could be exploited through a malicious Web site, according to alerts from the French Security Incident Response Team, which rates both issues "critical."

JRE is part of Sun's Java 2 Platform Standard Edition, or J2SE. Both flaws affect J2SE 5.0 and 5.0 Update 1 for Windows, Solaris and Linux. The general JRE flaw also affects J2SE 1.4.2_07 and earlier 1.4.2 releases for those operating systems, Sun said.

The Santa Clara, Calif.-based company is urging people to install updated software to protect against possible exploitation of the security flaws. It has released two software updates to address the issues: J2SE 5.0 Update 2, which has actually been available since February, and J2SE 1.4.2_08, which was released recently, company representatives said. The software can be downloaded from the Java.com Web site.

Sun said it wasn't aware of any exploits or attacks using the flaws.

Source.

More in Tux Machines

FileZilla 3.10.1 Released With Bug Fixes And Some Minor Changes Install In Ubuntu/Linux Mint


Picture

FileZilla is free and Open-Source ftp/sftp client with features FTPSFTP and FTPS (FTP over ssl/TLS). It has a very nice and easy to use user interface.FileZilla 3.10.1 released yesterday with bug fixes and minor changes.
 
 
 
 
 
 

Read at LinuxAndUbuntu

Flattr Is the Icon Pack with the Flattest Icons for Linux Systems – Gallery

Users who like flat icons might want to give Flattr a try. It's probably the flattest theme that you can find on the Linux platform and it's been recently updated. Read more

BackBox Linux 4.1 Is a Powerful Penetration Testing Distro Based on Ubuntu 14.04.1

BackBox Linux is a distribution based on Ubuntu 14.04.1 LTS, that is built to perform penetration tests and security assessments. A new version has been released and is now available for upgrade and testing. Read more

Airdroid - Transfer Files Between Android Phones/Tablets And Linux (Any Distribution)

 
airdroid transfer file between android phone/tablet and linux mint ubuntu
We often need to transfer large amount data in the form of mp3 Songs, Video Songs, Movies and most importantly, large Games between android phones/tablets and Linux machine. Transferring via USB cable takes time, so let's do it with 'Airdroid' easily and quickly.
 
 
 
 

Read at LinuxAndUbuntu