Noid
Platinum Member
Update to either 1.4.2_06 or 1.5.0 to fix the vulnerability.
You can download 1.5.0 (aka 5.0) here:
http://java.sun.com/j2se/1.5.0/download.jsp
Get the J2SE 5.0 JRE package.
You can get 1.4.2_06 from here:
http://java.sun.com/j2se/1.4.2/download.html
Some of the sites at Sun.com still report 1.4.2_05 as being current. If you check there it will say that the version of Java you have installed is current. That is not correct. Verify that you have 1.4.2_06 or 1.5.0 installed. There is a Control Panel applet for Java that will tell you what version you have.
There do not appear to be any actual malicious exploits taking advantage of this one yet. But there will be soon. There is proof of concept code out there and it won't be long till the malicious code is out there.
Linux is also vulnerable to this one. So you Linux users need to update too.
You can download 1.5.0 (aka 5.0) here:
http://java.sun.com/j2se/1.5.0/download.jsp
Get the J2SE 5.0 JRE package.
You can get 1.4.2_06 from here:
http://java.sun.com/j2se/1.4.2/download.html
Some of the sites at Sun.com still report 1.4.2_05 as being current. If you check there it will say that the version of Java you have installed is current. That is not correct. Verify that you have 1.4.2_06 or 1.5.0 installed. There is a Control Panel applet for Java that will tell you what version you have.
There do not appear to be any actual malicious exploits taking advantage of this one yet. But there will be soon. There is proof of concept code out there and it won't be long till the malicious code is out there.
Linux is also vulnerable to this one. So you Linux users need to update too.
