We have received a notice from US-CERT about a security flaw involving Sun Microsystems Java Platform. The flaw affects JDK and JRE 6 Update 4 and earlier versions of Java. This flaw has been labelled critical, and we are prioritizing addressing this flaw with our customers.

Who should be concerned?

1. Anyone who accesses the Internet with a Web Browser and/or using Java JRE 6 Update 4 and earlier (nearly everyone!).

If I meet the criteria that makes me vulnerable, what should I do?

1. You should apply an update for Sun Java as soon as possible.
2. You can download this update at java.com .

Where can I get more information about this problem?

• US-CERT Advisory TA08-066A

Popularity: 1% [?]