This script is Copyright (C) 2012-2013 Tenable Network Security, Inc.
The remote Scientific Linux host is missing one or more security
These vulnerabilities may be remotely exploitable without
authentication, i.e., they may be exploited over a network without the
need for a username and password. To be successfully exploited, an
unsuspecting user running an affected release in a browser will need
to visit a malicious web page that leverages this vulnerability.
Successful exploits can impact the availability, integrity, and
confidentiality of the user's system.
In addition, this Security Alert includes a security-in-depth fix in
the AWT subcomponent of the Java Runtime Environment.
Due to the severity of these vulnerabilities, the public disclosure of
technical details and the reported exploitation of CVE-2012-4681 'in
the wild,' we strongly recommend that you apply the updates as soon as
See also :
Update the affected java-1.6.0-sun-compat and / or jdk packages.
Risk factor :
Critical / CVSS Base Score : 10.0
Public Exploit Available : true