Test ID:	1.3.6.1.4.1.25623.1.0.61721
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2008:0891
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2008:0891. The IBM 1.5.0 Java release includes the IBM Java 2 Runtime Environment and the IBM Java 2 Software Development Kit. A flaw was found in the Java Management Extensions (JMX) management agent. When local monitoring is enabled, remote attackers could use this flaw to perform illegal operations. (CVE-2008-3103) All users of java-1.5.0-ibm are advised to upgrade to these updated packages containing the IBM 1.5.0 SR8a Java release, which resolves this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2008-0891.html http://www.redhat.com/security/updates/classification/#moderate Risk factor : Critical CVSS Score: 9.3
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2008-3103 http://lists.apple.com/archives/security-announce//2008/Sep/msg00008.html BugTraq ID: 30146 http://www.securityfocus.com/bid/30146 Bugtraq: 20081004 VMSA-2008-0016 VMware Hosted products, VirtualCenter Update 3 and (Google Search) http://marc.info/?l=bugtraq&m=122331139823057&w=2 Bugtraq: 20081004 VMSA-2008-0016 VMware Hosted products, VirtualCenter Update 3 and patches for ESX and ESXi resolve multiple security issues (Google Search) http://www.securityfocus.com/archive/1/497041/100/0/threaded Cert/CC Advisory: TA08-193A http://www.us-cert.gov/cas/techalerts/TA08-193A.html http://security.gentoo.org/glsa/glsa-200911-02.xml https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10920 http://www.redhat.com/support/errata/RHSA-2008-0594.html http://www.redhat.com/support/errata/RHSA-2008-0595.html http://www.redhat.com/support/errata/RHSA-2008-0891.html http://www.redhat.com/support/errata/RHSA-2008-0906.html http://www.redhat.com/support/errata/RHSA-2008-1044.html http://www.redhat.com/support/errata/RHSA-2008-1045.html RedHat Security Advisories: RHSA-2009:0466 https://rhn.redhat.com/errata/RHSA-2009-0466.html http://www.securitytracker.com/id?1020458 http://secunia.com/advisories/31010 http://secunia.com/advisories/31055 http://secunia.com/advisories/31497 http://secunia.com/advisories/31600 http://secunia.com/advisories/32018 http://secunia.com/advisories/32179 http://secunia.com/advisories/32180 http://secunia.com/advisories/32394 http://secunia.com/advisories/32436 http://secunia.com/advisories/32437 http://secunia.com/advisories/33237 http://secunia.com/advisories/33238 http://secunia.com/advisories/34972 http://secunia.com/advisories/37386 http://sunsolve.sun.com/search/document.do?assetkey=1-66-238965-1 SuSE Security Announcement: SUSE-SA:2008:042 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00005.html SuSE Security Announcement: SUSE-SR:2008:022 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00009.html http://www.vupen.com/english/advisories/2008/2056/references http://www.vupen.com/english/advisories/2008/2740 XForce ISS Database: sun-jmx-security-bypass(43669) https://exchange.xforce.ibmcloud.com/vulnerabilities/43669
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.