This script is Copyright (C) 2009-2015 Tenable Network Security, Inc.
The remote Red Hat host is missing one or more security updates.
Updated java-1.6.0-sun packages that correct several security issues
are now available for Red Hat Enterprise Linux 4 Extras and 5
This update has been rated as having critical security impact by the
Red Hat Security Response Team.
The Java Runtime Environment (JRE) contains the software and tools
that users need to run applets and applications written using the Java
A vulnerability was found in in Java Web Start. If a user visits a
malicious website, an attacker could misuse this flaw to execute
arbitrary code. (CVE-2008-2086)
Additionally, these packages fix several other critical
vulnerabilities. These are summarized in the 'Advance notification of
Security Updates for Java SE' from Sun Microsystems.
Users of java-1.6.0-sun should upgrade to these updated packages,
which correct these issues.
See also :
Update the affected packages.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.7
Public Exploit Available : true
Family: Red Hat Local Security Checks
Nessus Plugin ID: 40731 ()
CVE ID: CVE-2008-2086