Revolving around the core of technology
Hello,
Using the latest version of the client & server (v3.4.735) Avast Anti-Virus is detecting java:CVE-2012-1723-CF in one of the class files.
setup.exe->(app)clientRT.tmpl|>com\synametrics\syncrify\client\SyncrifyClient.class
http://www.avast.com/exploit-protection.php
"Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.2_37 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot. "
Does the Client/Server install files need to be rebuilt with an updated version of the Java SDK that *fixes* the most recent set of Java vulnerabilities?
Thanks,
-Jeremy
Dear Jeremy,
These vulnerabilities do not affect Syncrify (server or client). Click here for more info.
In my opinion this is a false positive by the virus detector. The file it thinks has the vulnerability (SyncrifyClient.class) is not part of Java. It is a class written by Synametrics Technologies.
Let us know if you have other questions.
Regards,
Synametrics Support