Mac OS X : Java for OS X 2012-004

This script is Copyright (C) 2012-2017 Tenable Network Security, Inc.

Synopsis :

The remote host has a version of Java that is affected by multiple

Description :

The remote Mac OS X 10.7 host is running a version of Java for Mac
OS X that is missing update 2012-004, which updates the Java version
to 1.6.0_33. As such, it is affected by several security
vulnerabilities, the most serious of which may allow an untrusted Java
applet to execute arbitrary code with the privileges of the current
user outside the Java sandbox.

In addition, the Java browser plugin and Java Web Start are
deactivated if they remain unused for 35 days or do not meet the
criteria for minimum safe version.

See also :

Solution :

Upgrade to Java for OS X Lion 2012-004, which includes version
14.3.0 of the JavaVM Framework.

Risk factor :

Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.7
Public Exploit Available : true

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now