{"id":19889,"date":"2013-10-16T10:23:44","date_gmt":"2013-10-16T17:23:44","guid":{"rendered":"http:\/\/www.intego.com\/mac-security-blog\/?p=19889"},"modified":"2016-10-06T12:35:28","modified_gmt":"2016-10-06T19:35:28","slug":"oracle-apple-patch-vulnerable-java-se-versions","status":"publish","type":"post","link":"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/","title":{"rendered":"Oracle, Apple Patch Vulnerable Java SE Versions"},"content":{"rendered":"<p><a href=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/java-security-header.jpg\"><img loading=\"lazy\" class=\"aligncenter size-full wp-image-9725\" src=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/java-security-header.jpg\" alt=\"java-security-header\" width=\"660\" height=\"370\" srcset=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/java-security-header.jpg 660w, https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/java-security-header-150x84.jpg 150w, https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/java-security-header-300x168.jpg 300w, https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/java-security-header-657x368.jpg 657w\" sizes=\"(max-width: 660px) 100vw, 660px\" \/><\/a><\/p>\n<p>Oracle has patched vulnerable Java SE versions with the release of Java SE 7u45. Oracle strongly recommends that all Java SE 7 users upgrade to this release. In conjunction with Oracle&#8217;s update, Apple released\u00a0Java for OS X 2013-005 and Mac OS X 10.6 Update 17 with fixes for multiple vulnerabilities in Java 1.6.0_51. These releases update the Apple-provided system Java SE 6 to version 1.6.0_65.<\/p>\n<p>Oracle&#8217;s <a href=\"http:\/\/www.oracle.com\/technetwork\/topics\/security\/cpuoct2013-1899837.html\" target=\"_blank\">critical patch update<\/a> contains 51 new security fixes for Oracle Java SE. Fifty of these vulnerabilities may be remotely exploitable without authentication, for instance, may be exploited over a network without the need for a username and password.\u00a0Supported versions that are affected are Java SE 7u40 and earlier, Java SE 6u60 and earlier, Java SE 5.0u51 and earlier, Java SE Embedded 7u40 and earlier and JavaFX 2.2.40 and earlier.<\/p>\n<p>Apple&#8217;s\u00a0Java for OS X 2013-005 and Mac OS X 10.6 Update 17 contains 38 new security fixes, according to Apple&#8217;s <a href=\"http:\/\/support.apple.com\/kb\/HT5982\" target=\"_blank\">security bulletin<\/a>. Apple described the security fixes as follows:<\/p>\n<blockquote><p>Multiple vulnerabilities existed in Java 1.6.0_51, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues were addressed by updating to Java version 1.6.0_65.<\/p><\/blockquote>\n<p>Apple&#8217;s updates are available for: Mac OS X 10.6.8, Mac OS X Server 10.6.8, OS X Lion 10.7 or later, OS X Lion Server 10.7 or later, and OS X Mountain Lion 10.8 or later.<\/p>\n<p>Following is a complete list of all 51 vulnerabilities resolved in the Oracle Java SE update, which includes the 38 bugs fixed in Apple&#8217;s Java related update:<\/p>\n<div>\n<ul>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-3829\" target=\"_blank\">CVE-2013-3829<\/a>\u00a0:\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, Java SE Embedded accessible data as well as read access to a subset of Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-4002\" target=\"_blank\">CVE-2013-4002<\/a> :\u00a0Vulnerability in the Java SE, JRockit, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, JRockit, Java SE Embedded.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5772\" target=\"_blank\">CVE-2013-5772<\/a> :\u00a0Vulnerability in the Java SE component of Oracle Java SE (subcomponent: jhat).\u00a0Very difficult to exploit vulnerability allows successful unauthenticated network attacks via HTTP. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5774\" target=\"_blank\">CVE-2013-5774<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5775\" target=\"_blank\">CVE-2013-5775<\/a> :\u00a0Vulnerability in the Java SE, JavaFX component of Oracle Java SE (subcomponent: JavaFX).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, JavaFX accessible data as well as read access to a subset of Java SE, JavaFX accessible data and ability to cause a partial denial of service (partial DOS) of Java SE, JavaFX.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5776\" target=\"_blank\">CVE-2013-5776<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Deployment).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5777\" target=\"_blank\">CVE-2013-5777<\/a> :\u00a0Vulnerability in the Java SE, JavaFX component of Oracle Java SE (subcomponent: JavaFX).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5778\" target=\"_blank\">CVE-2013-5778<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: 2D).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5780\" target=\"_blank\">CVE-2013-5780<\/a> :\u00a0Vulnerability in the Java SE, JRockit, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized read access to a subset of Java SE, JRockit, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5782\" target=\"_blank\">CVE-2013-5782<\/a> :\u00a0Vulnerability in the Java SE, JRockit, Java SE Embedded component of Oracle Java SE (subcomponent: 2D).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5783\" target=\"_blank\">CVE-2013-5783<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Swing).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, Java SE Embedded accessible data as well as read access to a subset of Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5784\" target=\"_blank\">CVE-2013-5784<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: SCRIPTING).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5787\" target=\"_blank\">CVE-2013-5787<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Deployment).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5788\" target=\"_blank\">CVE-2013-5788<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Deployment).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5789\" target=\"_blank\">CVE-2013-5789<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Deployment).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5790\" target=\"_blank\">CVE-2013-5790<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: BEANS).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5797\" target=\"_blank\">CVE-2013-5797<\/a> :\u00a0Vulnerability in the Java SE, JRockit, JavaFX component of Oracle Java SE (subcomponent: Javadoc).\u00a0Difficult to exploit vulnerability allows successful authenticated network attacks via HTTP. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, JRockit, JavaFX accessible data.<\/li>\n<li><a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5800\" target=\"_blank\">CVE-2013-5800<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JGSS).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via Kerberos. Successful attack of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5801\" target=\"_blank\">CVE-2013-5801<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: 2D).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5802\" target=\"_blank\">CVE-2013-5802<\/a> :\u00a0Vulnerability in the Java SE, JRockit, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, JRockit, Java SE Embedded accessible data as well as read access to a subset of Java SE, JRockit, Java SE Embedded accessible data and ability to cause a partial denial of service (partial DOS) of Java SE, JRockit, Java SE Embedded.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5803\" target=\"_blank\">CVE-2013-5803<\/a> :\u00a0Vulnerability in the Java SE, JRockit, Java SE Embedded component of Oracle Java SE (subcomponent: JGSS).\u00a0Very difficult to exploit vulnerability allows successful unauthenticated network attacks via Kerberos. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, JRockit, Java SE Embedded.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5804\" target=\"_blank\">CVE-2013-5804<\/a> :\u00a0Vulnerability in the Java SE, JRockit component of Oracle Java SE (subcomponent: Javadoc).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via HTTP. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, JRockit accessible data as well as read access to a subset of Java SE, JRockit accessible data.<\/li>\n<li><a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5805\" target=\"_blank\">CVE-2013-5805<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Swing).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5806\" target=\"_blank\">CVE-2013-5806<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Swing).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5809\" target=\"_blank\">CVE-2013-5809<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: 2D).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5810\" target=\"_blank\">CVE-2013-5810<\/a> :\u00a0Vulnerability in the Java SE, JavaFX component of Oracle Java SE (subcomponent: JavaFX).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5812\" target=\"_blank\">CVE-2013-5812<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Deployment).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data and ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5814\" target=\"_blank\">CVE-2013-5814<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: CORBA).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5817\" target=\"_blank\">CVE-2013-5817<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JNDI).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5818\" target=\"_blank\">CVE-2013-5818<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Deployment).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5819\" target=\"_blank\">CVE-2013-5819<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Deployment).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5820\" target=\"_blank\">CVE-2013-5820<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAX-WS).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5823\" target=\"_blank\">CVE-2013-5823<\/a> :\u00a0Vulnerability in the Java SE, JRockit, Java SE Embedded component of Oracle Java SE (subcomponent: Security).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, JRockit, Java SE Embedded.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5824\" target=\"_blank\">CVE-2013-5824<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Deployment).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5825\" target=\"_blank\">CVE-2013-5825<\/a> :\u00a0Vulnerability in the Java SE, JRockit, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, JRockit, Java SE Embedded.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5829\" target=\"_blank\">CVE-2013-5829<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: 2D).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5830\" target=\"_blank\">CVE-2013-5830<\/a> :\u00a0Vulnerability in the Java SE, JRockit, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5831\" target=\"_blank\">CVE-2013-5831<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Deployment).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5832\" target=\"_blank\">CVE-2013-5832<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Deployment).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5838\" target=\"_blank\">CVE-2013-5838<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5840\" target=\"_blank\">CVE-2013-5840<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5842\" target=\"_blank\">CVE-2013-5842<\/a> : \u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5843\" target=\"_blank\">CVE-2013-5843<\/a> :\u00a0Vulnerability in the Java SE, JavaFX, Java SE Embedded component of Oracle Java SE (subcomponent: 2D).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5844\" target=\"_blank\">CVE-2013-5844<\/a> :\u00a0Vulnerability in the Java SE, JavaFX component of Oracle Java SE (subcomponent: JavaFX).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5846\" target=\"_blank\">CVE-2013-5846<\/a> :\u00a0Vulnerability in the Java SE, JavaFX component of Oracle Java SE (subcomponent: JavaFX).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5848\" target=\"_blank\">CVE-2013-5848<\/a> :\u00a0Vulnerability in the Java SE, JavaFX component of Oracle Java SE (subcomponent: Deployment).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized update, insert or delete access to some Java SE, JavaFX accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5849\" target=\"_blank\">CVE-2013-5849<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: AWT).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/www.cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5850\" target=\"_blank\">CVE-2013-5850<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries).\u00a0Difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5851\" target=\"_blank\">CVE-2013-5851<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: JAXP).\u00a0Easily exploitable vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data.<\/li>\n<li><a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5852\" target=\"_blank\">CVE-2013-5852<\/a> :\u00a0Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Deployment).\u00a0Very difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized Operating System takeover including arbitrary code execution.<\/li>\n<li><a href=\"http:\/\/cve.mitre.org\/cgi-bin\/cvename.cgi?name=CVE-2013-5854\" target=\"_blank\">CVE-2013-5854<\/a> :\u00a0Vulnerability in the Java SE, JavaFX component of Oracle Java SE (subcomponent: JavaFX).\u00a0Very difficult to exploit vulnerability allows successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability can result in unauthorized read access to a subset of Java SE, JavaFX accessible data.<\/li>\n<\/ul>\n<\/div>\n<div>Mac users can go to Oracle&#8217;s website to <a href=\"http:\/\/www.oracle.com\/technetwork\/java\/javase\/downloads\/index.html\" target=\"_blank\">download Java SE 7u45<\/a> as advised.\u00a0Users running OS X Lion 10.7 or later and OS X Mountain Lion 10.8 or later can head over to Apple&#8217;s <a href=\"http:\/\/support.apple.com\/kb\/DL1572\" target=\"_blank\">Java for OS X 2013-005<\/a> download page to install the 63.98 MB update to 1.6.0_65.\u00a0Users running OS X 10.6.8 Snow Leopard can go to Apple&#8217;s <a href=\"http:\/\/support.apple.com\/kb\/DL1573\" target=\"_blank\">Java for Mac OS X 10.6 Update 17<\/a> download page to install the 69.54 MB update to 1.6.0_65. Users running Java SE with a browser can download the latest release from <a href=\"http:\/\/java.com\" target=\"_blank\">Java.com<\/a>.<\/div>\n<p>&nbsp;<\/p>\n<div>For Mac OS X v10.6 systems<\/div>\n<div>The download file is named: JavaForMacOSX10.6update17.dmg<\/div>\n<div>Its SHA-1 digest is: 5dfe7eaebf9726352c97964da61d57fa28246c08<\/div>\n<p>&nbsp;<\/p>\n<div>For OS X Lion and Mountain Lion systems<\/div>\n<div>The download file is named: JavaForOSX2013-005.dmg<\/div>\n<div>Its SHA-1 digest is: ce78f9a916b91ec408c933bd0bde5973ca8a2dc4<\/div>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Oracle has patched vulnerable Java SE versions with the release of Java SE 7u45. Oracle strongly recommends that all Java SE 7 users upgrade to this release. In conjunction with Oracle&#8217;s update, Apple released\u00a0Java for OS X 2013-005 and Mac OS X 10.6 Update 17 with fixes for multiple vulnerabilities in Java 1.6.0_51. These releases [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":9921,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false},"categories":[5],"tags":[811,3151,261,75,807,805,459,801,803,809,183],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v17.4 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<meta name=\"description\" content=\"Oracle has patched vulnerable Java SE versions with the release of Java SE 7u45. Oracle strongly recommends that all Java SE 7 users upgrade to this\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Oracle, Apple Patch Vulnerable Java SE Versions - The Mac Security Blog\" \/>\n<meta property=\"og:description\" content=\"Oracle has patched vulnerable Java SE versions with the release of Java SE 7u45. Oracle strongly recommends that all Java SE 7 users upgrade to this\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/\" \/>\n<meta property=\"og:site_name\" content=\"The Mac Security Blog\" \/>\n<meta property=\"article:published_time\" content=\"2013-10-16T17:23:44+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2016-10-06T19:35:28+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Java-Security-Update-Tile.png\" \/>\n\t<meta property=\"og:image:width\" content=\"400\" \/>\n\t<meta property=\"og:image:height\" content=\"260\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Derek Erwin\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"15 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\",\"name\":\"Intego\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"sameAs\":[],\"logo\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png\",\"width\":875,\"height\":875,\"caption\":\"Intego\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#logo\"}},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/\",\"name\":\"The Mac Security Blog\",\"description\":\"Keep Macs safe from the dangers of the Internet\",\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#primaryimage\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Java-Security-Update-Tile.png\",\"contentUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Java-Security-Update-Tile.png\",\"width\":\"400\",\"height\":\"260\",\"caption\":\"Java security updates\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#webpage\",\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/\",\"name\":\"Oracle, Apple Patch Vulnerable Java SE Versions - The Mac Security Blog\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#primaryimage\"},\"datePublished\":\"2013-10-16T17:23:44+00:00\",\"dateModified\":\"2016-10-06T19:35:28+00:00\",\"description\":\"Oracle has patched vulnerable Java SE versions with the release of Java SE 7u45. Oracle strongly recommends that all Java SE 7 users upgrade to this\",\"breadcrumb\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.intego.com\/mac-security-blog\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Oracle, Apple Patch Vulnerable Java SE Versions\"}]},{\"@type\":\"Article\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#webpage\"},\"author\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d7586ee278e291223dbae05ec1d95812\"},\"headline\":\"Oracle, Apple Patch Vulnerable Java SE Versions\",\"datePublished\":\"2013-10-16T17:23:44+00:00\",\"dateModified\":\"2016-10-06T19:35:28+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#webpage\"},\"wordCount\":2992,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Java-Security-Update-Tile.png\",\"keywords\":[\"1.6.0_65\",\"Apple\",\"Bug Fixes\",\"Java\",\"Java for Mac OS X 10.6 Update 17\",\"Java for OS X 2013-005\",\"Java SE\",\"Java SE 6\",\"Java SE 7\",\"Java SE 7u45\",\"Oracle\"],\"articleSection\":[\"Security News\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#respond\"]}]},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d7586ee278e291223dbae05ec1d95812\",\"name\":\"Derek Erwin\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.intego.com\/mac-security-blog\/#personlogo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/f88b4bb259f7d5b1d10884ffa4b3c126?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/f88b4bb259f7d5b1d10884ffa4b3c126?s=96&d=mm&r=g\",\"caption\":\"Derek Erwin\"},\"url\":\"https:\/\/www.intego.com\/mac-security-blog\/author\/derek-erwin\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"description":"Oracle has patched vulnerable Java SE versions with the release of Java SE 7u45. Oracle strongly recommends that all Java SE 7 users upgrade to this","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/","og_locale":"en_US","og_type":"article","og_title":"Oracle, Apple Patch Vulnerable Java SE Versions - The Mac Security Blog","og_description":"Oracle has patched vulnerable Java SE versions with the release of Java SE 7u45. Oracle strongly recommends that all Java SE 7 users upgrade to this","og_url":"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/","og_site_name":"The Mac Security Blog","article_published_time":"2013-10-16T17:23:44+00:00","article_modified_time":"2016-10-06T19:35:28+00:00","og_image":[{"width":"400","height":"260","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Java-Security-Update-Tile.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_misc":{"Written by":"Derek Erwin","Est. reading time":"15 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Organization","@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization","name":"Intego","url":"https:\/\/www.intego.com\/mac-security-blog\/","sameAs":[],"logo":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2022\/10\/intego-organization-logo-for-google-knowledge-graph-875x875-1.png","width":875,"height":875,"caption":"Intego"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#logo"}},{"@type":"WebSite","@id":"https:\/\/www.intego.com\/mac-security-blog\/#website","url":"https:\/\/www.intego.com\/mac-security-blog\/","name":"The Mac Security Blog","description":"Keep Macs safe from the dangers of the Internet","publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.intego.com\/mac-security-blog\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#primaryimage","inLanguage":"en-US","url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Java-Security-Update-Tile.png","contentUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Java-Security-Update-Tile.png","width":"400","height":"260","caption":"Java security updates"},{"@type":"WebPage","@id":"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#webpage","url":"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/","name":"Oracle, Apple Patch Vulnerable Java SE Versions - The Mac Security Blog","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#primaryimage"},"datePublished":"2013-10-16T17:23:44+00:00","dateModified":"2016-10-06T19:35:28+00:00","description":"Oracle has patched vulnerable Java SE versions with the release of Java SE 7u45. Oracle strongly recommends that all Java SE 7 users upgrade to this","breadcrumb":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.intego.com\/mac-security-blog\/"},{"@type":"ListItem","position":2,"name":"Oracle, Apple Patch Vulnerable Java SE Versions"}]},{"@type":"Article","@id":"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#article","isPartOf":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#webpage"},"author":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d7586ee278e291223dbae05ec1d95812"},"headline":"Oracle, Apple Patch Vulnerable Java SE Versions","datePublished":"2013-10-16T17:23:44+00:00","dateModified":"2016-10-06T19:35:28+00:00","mainEntityOfPage":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#webpage"},"wordCount":2992,"commentCount":0,"publisher":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/#organization"},"image":{"@id":"https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#primaryimage"},"thumbnailUrl":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Java-Security-Update-Tile.png","keywords":["1.6.0_65","Apple","Bug Fixes","Java","Java for Mac OS X 10.6 Update 17","Java for OS X 2013-005","Java SE","Java SE 6","Java SE 7","Java SE 7u45","Oracle"],"articleSection":["Security News"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.intego.com\/mac-security-blog\/oracle-apple-patch-vulnerable-java-se-versions\/#respond"]}]},{"@type":"Person","@id":"https:\/\/www.intego.com\/mac-security-blog\/#\/schema\/person\/d7586ee278e291223dbae05ec1d95812","name":"Derek Erwin","image":{"@type":"ImageObject","@id":"https:\/\/www.intego.com\/mac-security-blog\/#personlogo","inLanguage":"en-US","url":"https:\/\/secure.gravatar.com\/avatar\/f88b4bb259f7d5b1d10884ffa4b3c126?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f88b4bb259f7d5b1d10884ffa4b3c126?s=96&d=mm&r=g","caption":"Derek Erwin"},"url":"https:\/\/www.intego.com\/mac-security-blog\/author\/derek-erwin\/"}]}},"jetpack_featured_media_url":"https:\/\/www.intego.com\/mac-security-blog\/wp-content\/uploads\/2013\/01\/Java-Security-Update-Tile.png","jetpack_publicize_connections":[],"jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p4VAYd-5aN","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/19889"}],"collection":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/comments?post=19889"}],"version-history":[{"count":28,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/19889\/revisions"}],"predecessor-version":[{"id":58042,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/posts\/19889\/revisions\/58042"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media\/9921"}],"wp:attachment":[{"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/media?parent=19889"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/categories?post=19889"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/origin.intego.com\/mac-security-blog\/wp-json\/wp\/v2\/tags?post=19889"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}