Sun Java Security Vulnerabilities

Tags:
configuration
Desktop management applications
patching
PEN testing
Platform Security
vulnerability management
Sun published updated versions of Sun Java JDK, JRE and SDK to close multiple security vulnerabilities. We have many applications that only work with a certain release of Java so if we upgrade all out client (to fix the vulnerabilities) then these applications will break. Are other companies experiencing this problem and if so how are you planning to address this issue?

Answer Wiki

Thanks. We'll let you know when a new response is added.

This is a common problem with both internal and third-party applications. It is becomming a criticial issue, as Microsoft has de-supported MSJVM and companies have to migrate to Sun JRE. For third-party applications, it is particularly tricky from a patch/update deployment issue, as many web-based applications are not clearly documented and users do not understand that it won’t work until after deploying the update. In our case, we remove all prior versions of the JRE and lay down the current version. My recommendation is to NOT design an app to check for a specific version – which is the root cause of the problem. But even if you do this, you have to retest every application against the new release before giving approval for general deployment.

Discuss This Question:  

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following