Oracle Java JRE Unsupported Version Detection

This script is Copyright (C) 2011-2017 Tenable Network Security, Inc.


Synopsis :

The remote host contains one or more unsupported versions of the
Oracle Java JRE.

Description :

According to its self-reported version number, at least one
installation of Oracle (formerly Sun) Java JRE on the remote host
is no longer supported.

Lack of support implies that no new security patches for the product
will be released by the vendor. As a result, it is likely to contain
security vulnerabilities.

Note that Oracle does provide support contracts under the 'Oracle
Lifetime Support' program. If the detected JRE is supported under this
program, this may be a false positive.

See also :

http://www.oracle.com/technetwork/java/eol-135779.html
http://www.oracle.com/us/support/lifetime-support-068561.html

Solution :

Upgrade to a version of Oracle Java JRE that is currently supported.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Family: Windows

Nessus Plugin ID: 55958 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now