Locked plugin contains unrepaired vulnerabilities that are actively exploited by hackers.
As representatives of Mozilla in a corporate blog ADD-ONS, in the “black list” of add-ons for the Firefox browser was introduced Pack Java 7 Update 7.
According to experts, the old version of this update rollup has unrepaired vulnerability CVE-2012-5076, which is actively exploited by hackers.
It is worth noting that to date, the exploitation of vulnerabilities in browsers and plug-ins Flash and Java has become a major source of malware. Users become victims of cybercrime, in many cases, because of their carelessness. For example, the Java component developers have released a revised package of amendments Java 7 Update 9, but many users are using outdated software, putting themselves at risk.
To prevent security incidents of Mozilla products are already blocked Update 6 and earlier additions Java. Now in the “black list” made and package Java 7 Update 7.