<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Vulnerability Development: Java - JRE, SDK Java Web Start

Java - JRE, SDK Java Web Start

From: <jfvanmeter_at_comcast.net>
Date: 16 Jul 2007 15:18:37 -0000

('binary' encoding is not supported, stored as-is) How does everyone feel about java being installed by vendors in a propriety path i.e. program files\mysoftware\bin\jre\1.4.0\ and never patching it.

I ran an enterprise scan to looking for javaws.exe and found it in 175 unique paths. Should they be held accountable for the patching of java when they install it?

I had one vendor who installed java 1.3 and 1.4, and when I ask them about it. There statement was “you don’t have the modules that require those versions you can just delete them”

How does everyone patch Java that is not installed in its default location?
Received on Jul 17 2007

This message: [ Message body ]
Next message: Kish Pent: "Re: Java - JRE, SDK Java Web Start"
Previous message: RS: "CFP now open for ClubHack, India's own hackers' convention"
Next in thread: Kish Pent: "Re: Java - JRE, SDK Java Web Start"
Reply: Kish Pent: "Re: Java - JRE, SDK Java Web Start"
Reply: Blue Boar: "Re: Java - JRE, SDK Java Web Start"
Reply: 3APA3A: "Re: Java - JRE, SDK Java Web Start"
Maybe reply: jfvanmeter_at_comcast.net: "Re: Java - JRE, SDK Java Web Start"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos