Apple is protecting OS X 10.6 Snow Leopard users from the recently-discovered Java vulnerability by blocking the plugin outright.According to tech website Digital Trends, researchers identified a "remote code execution vulnerability in Java 7 Update 10 and earlier versions" that allows hackers to "execute arbitrary code on an exposed machine." The Computing Readiness Team saidFollowing the discovery of a security threat in the latest version of Oracle's Java 7, Apple has blocked the affected Java plugin from OS X. The block comes by way of OS X's plug-in blacklist feature, as highlighted byThe Java zero-day vulnerability, dubbed CVE-2013-0422, "allows remote attackers to execute arbitrary code via unknown vectors, possibly related to 'permissions of certain Java classes,'" according to the National Vulnerability Database. The flawThe latest Java vulnerability is only possible because Oracle didn't properly fix an old one. It's already being used to push ransomware.
Related External LinksApple disables Java 7 OS X plug-in after security threat found ...Apple, Mozilla block Java amid new vulnerability | SciTech | GMA ...Disable Java software now, says US Dept. of Homeland Security
No comments:
Post a Comment