I need a solution
Hello,
My IDS/IPS is reporting the following event continously: ET POLICY Vulnerable Java Version 1.7.x Detected
0000000:47 45 54 20 2f 61 76 63 65 6e 74 65 72 2f 76 65 6e 63 2f 61 75 74 6f 2f 64 65 GET./avcenter/venc/auto/de000001A:66 73 74 61 74 73 2e 78 6d 6c 20 48 54 54 50 2f 31 2e 31 0d 0a 55 73 65 72 2d fstats.xml.HTTP/1.1..User-0000034:41 67 65 6e 74 3a 20 4a 61 76 61 2f 31 2e 37 2e 30 5f 35 31 0d 0a 48 6f 73 74 Agent:.Java/1.7.0_51..Host000004E:3a 20 73 65 63 75 72 69 74 79 72 65 73 70 6f 6e 73 65 2e 73 79 6d 61 6e 74 65 :.securityresponse.symante0000068:63 2e 63 6f 6d 0d 0a 41 63 63 65 70 74 3a 20 74 65 78 74 2f 68 74 6d 6c 2c 20 c.com..Accept:.text/html,.0000082:69 6d 61 67 65 2f 67 69 66 2c 20 69 6d 61 67 65 2f 6a 70 65 67 2c 20 2a 3b 20 image/gif,.image/jpeg,.*;.000009C:71 3d 2e 32 2c 20 2a 2f 2a 3b 20 71 3d 2e 32 0d 0a 43 6f 6e 6e 65 63 74 69 6f q=.2,.*/*;.q=.2..Connectio00000B6:6e 3a 20 6b 65 65 70 2d 61 6c 69 76 65 0d 0a 0d 0a n:.keep-alive....
Upon reviewing the event I can see that this is related to SEPM that is the management engine running on a Windows Server 2008. That Windows Server does not have Java installed as something that can be upgraded/removed.
My question is if there is an update for SEPM that uses a newer Java version (v8u65)?
Thank you.
0