Without words, the security company FireEye has just discovered another flaw in java just days after the previous ones ... YAJ0: YET ANOTHER JAVA ZERO-DAY
Lately, thank you or unfortunately .. But because of Java. Several large companies and social networks have fallen ...
Among so many are: "sophisticated" Successful attack on Facebook. And till Twitter (revealing more than 250.000 accounts on the social network).
Apple Computers has also reported being the victim of attacks using the same technique (infection your employees with malware using a java bug), further increasing the alert and raising the pressure on Oracle to repair this problem as soon as possible. fullfilment of security requirements.
On Wednesday. Finally Oracle, the company responsible for JAVA since it acquired Sun Microsystem, has released a patch to address this vulnerability REVIEW which allows an attacker to execute arbitrary code in any operating systemsimply by visiting a specially designed or modified website.
The recommendation then is to apply this patch as soon as possible on all your systems, to avoid security problems on your computers, especially knowing that there are many eyes set on this vulnerability and sooner or later organized malware mafias will be using it to grow their business.
As we know that it will not be the last security flaw in JAVA, you may want to remove it from your browser, keeping its functions on your computer, for this you can perform the following steps depending on the browser you use:
- Internet Explorer: If you have UAC enabled, deactivate it and restart then open the Control Panel and click on the Java icon, you go to the tab that says Advanced and in the option of "java for browsers", stand on top of "Microsoft Internet Explorer" and press space, then click OK and that's it.
- Mozilla Firefox Enter the "components" option, look for everything that is related to java and click on "Disable" in everything that Java says.
- Safari: Enter safari preferences, then the "security" option and deactivate the option that says "Allow Java".
- Chrome: open the plugins from the menu (or by typing chrome: // plugins / in the bar) in the list that appears, look for the java plugins and click on "Disable".
- Opera: In the address bar you write opera: plugins and in the list that appears, click on disable everything that says java.
The origin of these attacks is not yet known and although several media They accuse China as the origin of the sameThere is still not enough evidence to ensure that this is the case.
Taken from: DragonJar
Java has more holes than Gruyère cheese xD
The holes are in the java-applet, not in the java-runtime. java-applet has been outdated for years but people keep using them and that's why they stick around. Basically what happens with java-applet is the same as with Flash and Silverlight, which also have a lot of security holes. In applets, certified applications are allowed to escape to the sandbox, so malicious applets attack the validation system and can perform operations outside of the sandbox.
wegewgw tempt me, just above the Gruyère cheese, you can see the little mouse from xfce: 3
Too bad that the HTML5 code is not used to create applications and other things to replace Java at once, or if it can?….
Sure it can, I don't know how much it can replace Java, but take a look at FIrefoxOS.
With HTML5, you no longer need Flash Player or Java.
Damn Java!
It goes from bad to worse, since oracle bought them.
and that is why they should use Open JDK XD.
Taran !! .. ..that's all folks .. xD
Does it affect those of us who use IcedTea? I don't know much about it.
I would change the part of the instructions to Internet Explorer users to "switch to a serious browser" or "cry and hide until some magical way, everything is resolved" ...
regards
and why don't you put openjdk installation among the possible options?