Updates from Oracle not fix vulnerabilities in Java

Posted: January 15, 2013 in IT Security News, Security Notices
Tags: , , ,

Java DangerExperts advise all companies to disable Java on the computers of all employees.

Oracle has released an emergency update to its Java software over the weekend, which should have prevented the main drawback of IT-security software. However, experts say that the update does not work. Recall that the update was released after the Department of Homeland Security urged PC users disable Java on their devices because of the vulnerability.

Discovered vulnerability being exploited for identity theft and other crimes. This was reported by representatives of the Department of Homeland Security.

Adam Gowdiak, researcher in the field of information security from Poland, who last year discovered several vulnerabilities in Java, said the upgrade from Oracle does not remove all of the existing gaps.

Currently, some companies in the field of information security, advise companies to remove Java from browsers all employees.

Rapid7 representatives believe that in order to fix all security bugs in Java, Oracle will take at least two years. Some experts point out that Java will always be vulnerable, and more people should not use it.

Among Oracle noted that released updates address two vulnerabilities in Java 7 for web-browsers. In addition, the Java security settings are now enabled by default on a high level so that malware can not run on a computer without the user’s knowledge.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s