Secunia Security Advisory - Apple has issued an update for Java for Mac OS X. This fixes some vulnerabilities, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, or compromise a vulnerable system.
c6a4d5c60170579909a6d11511dee9fbb16a5d6d3597ad7f48087d2296b02c83
----------------------------------------------------------------------
Did you know that a change in our assessment rating, exploit code
availability, or if an updated patch is released by the vendor, is
not part of this mailing-list?
Click here to learn more:
http://secunia.com/advisories/business_solutions/
----------------------------------------------------------------------
TITLE:
Mac OS X update for Java
SECUNIA ADVISORY ID:
SA33935
VERIFY ADVISORY:
http://secunia.com/advisories/33935/
CRITICAL:
Highly critical
IMPACT:
Security Bypass, Exposure of sensitive information, System access
WHERE:
>From remote
OPERATING SYSTEM:
Apple Macintosh OS X
http://secunia.com/advisories/product/96/
DESCRIPTION:
Apple has issued an update for Java for Mac OS X. This fixes some
vulnerabilities, which can be exploited by malicious people to bypass
certain security restrictions, disclose sensitive information, or
compromise a vulnerable system.
For more information:
SA32991
SOLUTION:
Java for Mac OS X 10.4:
Update to Release 8.
http://support.apple.com/downloads/DL776/JavaForMacOSX10.4Release8.dmg
Java for Mac OS X 10.5:
Apply Update 3.
http://support.apple.com/downloads/DL784/JavaForMacOSX10.5Update3.dmg
ORIGINAL ADVISORY:
Apple:
http://support.apple.com/kb/HT3436
http://support.apple.com/kb/HT3437
OTHER REFERENCES:
SA32991:
http://secunia.com/advisories/32991/
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------