lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <93bd852904112421002571c6a8@mail.gmail.com> Date: Wed, 24 Nov 2004 23:00:30 -0600 From: Ken S <ken.securitylist@...il.com> To: bugtraq@...urityfocus.com Subject: Re: Sun Java Plugin arbitrary package access vulnerability After installing a new version of the JRE on two machines, IE and Firefox both report the plug-in as 1.4.2_06. For browsing to unknown sites, it would appear that there is no need to uninstall the older versions, unless there is a way for the javascript code to call a lower version of the JRE. Hopefully, that's not possible.
Powered by blists - more mailing lists