IBM informed of multiple flaws in IBM Java 5.x. An attacker may exploit them to steal information, launch DoS attack and compromise user’s system. Highly critical flaws were found in Deployment, Networking, AWT, Swing, 2D, Deserialization, Scripting, JAXWS, HotSpot, RMI and JSSE. Vulnerabilities are present also in SSL 3.0, TLS 1.0 and jsound.dll.
Users should upgrade to SR 13.

Source: Secunia
24.11.2011