Sun java update process vulnerable



The Java Runtime Environment from Sun has a vulnerability that’s due in large part to a poor approach to updating it. IF you have not uninstalled previous versions of the JRE on your PC, they are likely still there EVEN after an update AND to make things even worse, a specially designed website could specifiy the version of the JRE to use in dealing with java components on the page. Sun’s advisory here on the issue. The story is from the SecurityFix and I’m bothered by the same point that get’s Brian about this update….


Why oh why???? if the vulnerability is that OLDER versions of JRE remain on disk without a MANUAL uninstall, can’t they AUTOMATICALLY uninstall the older versions with the update installer!!!!

Fortunately, Sun has uninstall instructions. Brian said he had a laptop that had no fewer than 4 version’s of Sun’s Java. Given that many of the updates would solve security vulnerability issues, please take the time to analyze systems to make sure that they not only have the most recent version, BUT ALSO have removed the older versions of Sun’s JRE.

Related Posts

Blog Traffic Exchange Related Posts
  • Microsoft Releasing out of Cycle Patch for Internet Explorer Exploit Take a look at the official announcement. They've moved outside the usual update cycle for this one. VERY good move Microsoft to get this patch in before the holidays as it looks as though there's been a spike in the use of this particular exploit and with people doing a......
  • Apple Quicktime and OS X updates to patch multiple security vulnerabilities Apple has released Quicktime v. 7.1 for both Windows and OS X to address about 12 vulnerabilities. It looks as though all of the vulnerabilities were related to either a specially crafted images or movies (a variety of formats...) Upgrade or use another viewer... Affected file formats are.... Jpegs, Flashpix,......
  • Gigabyte GA-7VT600 Motherboard automatically shutting off I've been struggling off and on with an issue on my Dad's computer the last month or so. He said that it would occasionally just shut off completely out of the blue. (He also admonished me not to spend much time on it. Unfortunately problems like this are usually the......
Blog Traffic Exchange Related Websites
  • Apple Releases iOS 5 Final Version - Download Now [Links] Earlier in June this year, Apple announced the next major release to iOS at WWDC 2011. This new iOS 5 includes 200+ new features for iPhone, iPad & iPod Touch. I had compiled all the major iOS 5 features in a blog post after WWDC 2011. Apple released 7 beta......
  • Review of Sprout Builder When Sprout Builder was first released in beta, this drag and drop Flash authoring widget building environment was immediately on fire. Although there was not much wrong with the original Sprout Builder, they have recently released a much more sophisticated version of their flash building services today. The new Software......
  • Wordpress 3.0.2 - Auto Updating Error Resolved Wordpress 3.0.2 - Don't Pull Your Hair Out Yet Image by Debs (ò‿ó)♪ via Flickr If you have been using Wordpress for any extended period of time you know that they are constantly updating their plate form. While it re assures me that wordpress is always improving it can also......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site