This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.
The remote SuSE 9 host is missing a security-related patch.
This update of IBM Java to 1.4.2 SR11 fixes various security problems
- Stack-based buffer overflow in Java Web Start
(javaws.exe) allows remote attackers to execute
arbitrary code via a crafted JNLP file. (CVE-2008-1196)
- Unspecified vulnerability in the Java Runtime
Environment (JRE) allows remote attackers to cause a
denial of service (JRE crash) and possibly execute
arbitrary code via unknown vectors related to XSLT
- Visual truncation vulnerability in the Java Runtime
Environment allows remote attackers to circumvent
display of the untrusted-code warning banner by creating
a window larger than the workstation screen.
See also :
Apply YOU patch number 12210.
Risk factor :
Medium / CVSS Base Score : 6.8