Network Computing is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Sun Patches 7 Critical Java Runtime Bugs

Windows, Linux, and Solaris users are at risk from multiple critical vulnerabilities in Sun's popular Java Runtime Environment, the company acknowledged in a recent security advisory.

Java Runtime Environment (JRE) provides the minimum needed to run Java applications or applets, which are deployed by Web sites and launch from within the browser.

The flaws, said Sun, are due to errors in the "reflection" APIs, and can be leveraged by attackers using maliciously-crafted applets to read and write files on the compromised system's hard drive, or execute programs. Sun, as is its practice, kept mum on details of the vulnerabilities.

Several editions of JRE are threatened by the bugs, including JRE 1.3.1_16 and earlier, JRE 1.4.2_09 and earlier, and JRE 5.0 Update 4 and earlier.

Sun recommended that users update to newer versions of JRE, and provided links in the advisory to those updates. Alternately, users can download JRE 5.0 Update 6 from here.

  • 1