Note: This is an archival copy of Security Sun Alert 201660 as previously published on http://sunsolve.sun.com.|
Latest version of this security advisory is available from http://support.oracle.com as Sun Alert 1001237.1.
Java 2 Platform, Standard Edition 1.4.2
Java 2 Platform, Standard Edition 1.4.1
Date of Resolved Release
Sun acknowledges, with thanks, Jouko Pynnonen for bringing this issue to our attention, and iDEFENSE Inc. for coordinating the release of this issue.
This issue is described in the following document: CVE CAN-2004-1029 at http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-1029.
This issue can occur in the following releases:
on the following platforms:
Note: JDK and JRE 5.0 are not affected by this issue.
To determine the version of Java on a system, the following command can be run:
% java -fullversion java full version "1.4.1_06-b01"
There are no reliable symptoms that would indicate the described issue has been exploited.
This issue is addressed in the following releases:
for the following platforms:
J2SE releases are available for download at http://java.sun.com/j2se/, at the following links:
Note: It is recommended that affected versions be removed from your system. For more information, please see the installation notes on the respective java.sun.com download pages.
This solution has no attachment