Computer Science Security Alerts
To be emailed any new alerts as they appear, or to cease being emailed such alerts, send email to securityalerts-request@cs. These can also be obtained via an Atom or RSS feed.

Tue, Jun 16, 2009

Critical Unpatched Mac OSX Java Vulnerability Now Fixed
The serious flaw in the Java virtual machine mentioned earlier is now fixed for Mac OS X 10.4.11 and 10.5.7. The flaw allows a Java applet to run arbitrary commands as the user of the web browser viewing the applet. This means a malicious web site could do harmful things to any unpatched Macintosh that connects to it with a web browser capable of running Java applets.

Patches are presently available vi Apple Software Update, or as Java for Mac OS X 10.5 Update 4 or Java for Mac OS X 10.4, Release 9 from Apple's support site at http://support.apple.com/downloads/.

Please note that Java and Java applets are different and distinct from Javascript. This particular flaw does not affect Javascript.

/alerts     permanent link

CSLab Support Page
To be emailed any new alerts as they appear, or to cease being emailed such alerts, send email to securityalerts-request@cs. These can also be obtained via an Atom or RSS feed.

Blosxom

[Valid HTML 4.01 Transitional] [Valid RSS] [Valid Atom]