Jan 17 2013

Oracle Patches Critical Java Flaws

Author: admin | Category: Cyber Security, Information Security, Vulnerability Assessment | Leave a Comment

On Sunday, January 13, Oracle released an emergency patch to address a pair of critical flaws in Java. One of the vulnerabilities is being actively exploited. Oracle’s decision to release a patch outside of its regular schedule is likely to have been influenced by an advisory from the US Department of Homeland Security’s (DHS’s) US-Computer Emergency Response Team (US-CERT) strongly recommending that users disable Java in their browsers. Some browsers took their own steps to help prevent users from attacks. For example, Mozilla placed Java 7 on its Click to
Play blacklist, which means that Firefox users have to explicitly agree to run the plug-in. Some experts have said that the emergency update does not go far enough.

Please see the link for more details: Java still contains security flaws, experts claim

Related Posts

Classified Documents Stolen from Japanese Agriculture Dept.

21-Month Sentence for Point-of-Sale Payment Card Data Thief

The ‘why’s and ‘wherefor’s of Penetration Test

Leave a Reply

Your email address will not be published. Required fields are marked *