Tuesday, September 30, 2014
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Microsoft Previews Windows 10
Google Offers Unlimited Cloud Storage To Students
Gionee Announced The World's Thinnest Smartphone
MPEG LA Rolls Out HEVC License
PayPal To Become An Independent Publicly Traded Company in 2015
AMD To Showcase ARM Cortex-A57-Based Hadoop on Opteron Processors
SanDisk Introduces New X300 SSD And Client SSD Upgrade Service For Corporate Environments
TSMC and ARM Announce 16nm FinFET Silicon with 64-bit ARM big.LITTLE Technology
Active Discussions
Yamaha CRW-F1UX
help questions structure DVDR
Made video, won't play back easily
Questions durability monitor LCD
Questions fungus CD/DVD Media, Some expert engineer in optical media can help me?
CD, DVD and Blu-ray burning for Android in development
IBM supercharges Power servers with graphics chips
Werner Vogels: four cloud computing trends for 2014
 Home > News > General Computing > Java Sa...
Last 7 Days News : SU MO TU WE TH FR SA All News

Friday, January 11, 2013
Java Said To Put Computers in High Risk


The US Department of Homeland Security warned Thursday that a flaw in Java software could allow an attacker to execute commands on a PC system.

System using Oracle Java 7 (1.7, 1.7.0) including Java Platform Standard Edition 7 (Java SE 7), Java SE Development Kit (JDK 7), Java SE Runtime Environment (JRE 7) as well as web browsers using the Java 7 plug-in are at high risk, the department said.

The vulnerability in the Java Security Manager allows a Java applet to grant itself permission to execute arbitrary code. An attacker could use social engineering techniques to entice a user to visit a link to a website hosting a malicious Java applet. An attacker could also compromise a legitimate web site and upload a malicious Java applet (a "drive-by download" attack).

"This vulnerability is being attacked in the wild, and is reported to be incorporated into exploit kits," the department's Computer Emergency Readiness Team said in a notice on its website.

"We are currently unaware of a practical solution to this problem."

The recommended solution was to disable Java, which typically runs as a plug-in program in web browsers.

"A fix will be available shortly," Oracle said in a statement released late on Friday.

Oracle added that the recently discovered flaw only affects Java 7, the program's most-recent version, and Java software designed to run on browsers.


Previous
Next
Faster Chrome 24 Browser Released        All News        Plextor Debuts Lineup of Storage Products At CES
Faster Chrome 24 Browser Released     General Computing News      Latest Skype Is Connected With Outlook

Get RSS feed Easy Print E-Mail this Message

Related News
GPU Acceleration Coming to Java
New Emergency Fix Releaseed For Java zero-day Exploit Released
New Critical Patch For Java SE Released
Researcher Finds New Bug In Java
Oracle Patches Java Bugs
Google Threatens To Exclude French Web sites From Search
Apple Removes Java From OS X
Industry Leaders Launch UTI, Home to the Java Verified Program
Sun Releases Java to The Open Source Community
JBlend Deployed in Sony Ericsson's First 3G i-mode Handset
Sony Ericsson releases Mobile JUnit for Java ME
New Java spec published

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2014 - All rights reserved -
Privacy policy - Contact Us .