Tue, Jun 16, 2009
Critical Unpatched Mac OSX Java Vulnerability Now Fixed
The serious flaw in the Java virtual machine
mentioned earlier is now fixed for Mac OS X 10.4.11 and 10.5.7.
The flaw allows a Java applet to run
arbitrary commands as the user of the web browser viewing the applet.
This means a malicious web site could do harmful things to any unpatched
Macintosh that connects to it with a web browser capable of running Java
applets.
Patches are presently available vi Apple Software Update, or as Java for Mac OS X 10.5 Update 4 or Java for Mac OS X 10.4, Release 9 from Apple's support site at http://support.apple.com/downloads/.
Please note that Java and Java applets are different and distinct from Javascript. This particular flaw does not affect Javascript.
To be emailed any new alerts as they appear, or to cease being emailed such alerts, send email to securityalerts-request@cs.
![[Valid HTML 4.01 Transitional]](/support/security/valid-html401-blue.png){kind=small}
![[Valid RSS]](/support/security/valid-rss.png)
![[Valid Atom]](/support/security/valid-atom.png)