Java Exploits »
Latest version of Java (7u11) is still vulnerable, Oracle issued an incomplete patch according to experts
Something surprising happened last week. Oracle issued an update (Java 7u11, Java 6u37, Java 5u38, and Java 4u40) in just three days to patch a recently discovered and massively exploited Java vulnerability. And over the weekend, too. As it turns out, Oracle didn’t do a very good job. (Is anyone [...]
Read More »Oracle issues Java update to fix latest exploit, but security experts say to still stay away
You know that latest Java exploit that had the world up in arms, with Firefox and Apple blocking Java and U.S. Department of Homeland Security recommending people disable Java? Yeah, well, Oracle has issued updates to Java to address and plug the exploit.
According to update notes released by Oracle [...]
Read More »New Java zero-day exploit hits the internet, is “massively exploited in the wild” — disable Java now!
So you thought Java season was over, eh? Wrong! It is still open season on Java and a brand new, previously unknown bug has been discovered in Java that allows scumbags to install malware on the computers of netizens.
It isn’t entirely clear how this exploit is conducted but it [...]
Read More »New Java vulnerability in Java 5/6/7 bypasses Java security sandbox, affects 1 billion users worldwide
Is it open season on Java? Or has the season for Java never ended? Who knows. I do know, however, that yet another vulnerability has been discovered in Java. This time the vulnerability affects Java 5, Java 6, and Java 7, meaning roughly one billion users around the world are [...]
Read More »New vulnerability is found in latest Java 7u7, your computer can be remotely hijacked… again…
Yesterday Oracle released an update to Java 7 (Java 7u7 update) that fixed nineteen critical vulnerabilities, two of which were exploited by in-the-wild attacks that installed malware on infected machines. It took Oracles four months to patch the just-mentioned vulnerabilities; it took security researchers less than 24 hours to find [...]
Read More »Oracle knew about critical Java vulnerabilities four months prior to attack, says security firm
You know that Java exploit dotTech posted about yesterday? The one that circumvents Java’s security sandbox and lets attackers remotely install malware on infected machines via payloads delivered from booby trapped websites? Yeah, well, a tech security firm is saying it alerted Oracle to that vulnerability four months ago. In [...]
Read More »New Java 7 exploit allows hackers to install malware on Windows, Mac OS X, and Linux; only fix currently is to disable Java
Perhaps due to their high market penetration, or maybe because of poor coding, Adobe Flash and Java have emerged as the two most widely attacked platforms on Windows, Mac OS X, and Linux alike. Indeed Adobe just recently patched a new Flash vulnerability, and now it is Java’s turn.
A [...]
Read More »