Release date:
Updated on: 2013-04-23
Affected Systems:
Oracle Java <= 7u20
Description:
--------------------------------------------------------------------------------
JAVA is an object-oriented programming language that can write cross-platform applications.
Java and earlier versions have the type Obfuscation Vulnerability, which can cause arbitrary code to run outside the Java sandbox.
<* Source: Jeroen Frijters
Link: http://weblog.ikvm.net/PermaLink.aspx? Guids = acd2dd6d-1028-4996-95df-efa42ac237f0
Http://dev.metasploit.com/redmine/projects/framework/repository/revisions/19f2e72dbb64b5687af84d0dbc2a38aa48029db3/entry/modules/exploits/multi/browser/java_jre17_reflection_types.rb
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
Oracle
------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://www.oracle.com/technetwork/topics/security/