SynopsisThe remote host has a version of Java that is affected by multiple vulnerabilities.
DescriptionThe remote Mac OS X 10.5 host is running a version of Java for Mac OS X that is missing Update 3.
The remote version of this software contains several security vulnerabilities in Java Web Start and the Java Plug-in. For instance, they may allow untrusted Java Web Start applications and untrusted Java applets to obtain elevated privileges. If an attacker can lure a user on the affected host into visiting a specially crafted web page with a malicious Java applet, he could leverage these issues to execute arbitrary code subject to the user's privileges.
SolutionUpgrade to Java for Mac OS X 10.5 Update 3.