Home | Reviews and Features | Special Reports | Forums |

+ Reply to Thread
Results 1 to 7 of 7
  1. January 11th, 2013 11:10 AM #1
    Shinma's Avatar
    Shinma
    Shinma is offline ____________
    Join Date
    Mar 2000
    Posts
    26,917

    Exclamation Java flaw draws Web attacks...

    Java flaw draws Web attacks, reports say

    A vulnerability in the Java software has the potential to affect a wide swath of computer users, and researchers warn that it's already being exploited "in the wild."

    Security researchers have spotted a new vulnerability in the widely used Java software that could give attackers access to your computer.

    The US-CERT group today issued an alert saying that Java 7 Update 10 and earlier versions of the software contain an unspecified vulnerability that can allow a remote, unauthenticated attacker to execute arbitrary code. The attack can be induced if someone visits a Web site that's been set up with malicious code to take advantage of the hole.

    This weak spot is already being attacked "in the wild" -- that is, it's a real-world threat -- and is being incorporated into exploit kits that make it easier for those with ill intentions to create an attack...

    For full story,
    Click HERE

    Luckily, I rarely use Java anymore...
    "I know nothing."
    Cheers.
    Reply With Quote Reply With Quote
  2. January 12th, 2013 08:59 AM #2
    SpywareDr's Avatar
    SpywareDr
    SpywareDr is offline Junior Member
    Join Date
    Feb 2011
    Posts
    182
    How to uninstall Java
    Doc

    ____________http://www.microsoft.com/security____________
    \____________________ ____.-.____ ____________________/
    \_____________\ -._)!(_.- /_____________/
    \_______\. ~\ /~ ./_______/
    \_______/
    Reply With Quote Reply With Quote
  3. March 3rd, 2013 10:24 AM #3
    SpywareDr's Avatar
    SpywareDr
    SpywareDr is offline Junior Member
    Join Date
    Feb 2011
    Posts
    182
    Another Java zero-day exploit in the wild actively attacking targets
    Latest attacks used to surreptitiously install McRat trojan on victim machines.
    by Dan Goodin - Mar 1 2013, 11:10am EST

    Hackers are exploiting a previously unknown and currently unpatched vulnerability in the latest version of Java to surreptitiously infect targets with malware, security researchers said Thursday night.

    The critical vulnerability is being exploited to install a remote-access trojan dubbed McRat, researchers from security firm FireEye warned. The attacks work against Java versions 1.6 Update 41 and 1.7 Update 15, which are the latest available releases of the widely used software. The attack is triggered when people with a vulnerable version of the Java browser plugin visit a website that has been booby-trapped with attack code. FireEye researchers Darien Kindlund and Yichong Lin said the exploit is being used against "multiple customers" and that they have "observed successful exploitation."

    The security of Java is reaching near-crisis levels as reports of new in-the-wild exploits have become an almost weekly occurrence over the past few months.

    [...continues...]
    Doc

    ____________http://www.microsoft.com/security____________
    \____________________ ____.-.____ ____________________/
    \_____________\ -._)!(_.- /_____________/
    \_______\. ~\ /~ ./_______/
    \_______/
    Reply With Quote Reply With Quote
  4. March 4th, 2013 12:42 AM #4
    DanceMan's Avatar
    DanceMan
    DanceMan is offline Procrastinating Member
    Join Date
    Jun 2000
    Location
    Vancouver, B.C., Canada
    Posts
    7,981
    Damn. OOo or Llibre Office use Java and I just installed LO in one laptop. I otherwise have no need of Java.
    Go Silent SPCR
    Useful PSU info
    Reply With Quote Reply With Quote
  5. March 4th, 2013 12:57 AM #5
    Huge's Avatar
    Huge
    Huge is offline what am i still doing up?
    Join Date
    Aug 1999
    Location
    New York, NY
    Posts
    5,781
    Quote Originally Posted by SpywareDr View Post
    How to uninstall Java
    +1
    ASUS Rampage III Formula Intel X58, Intel Core i7-930 @ 3.6, Patriot Viper II Sector 7 Edition 12GB, Galaxy Geforce GTX 680 SLI, LITE-ON Internal Blu-ray Burner 12X, Dell UltraSharp U2711 IPS-Panel Black 27" 6ms, Corsair Hydro Series H100, ENERMAX SGALAXY EVO EGX1250EWT, Corsair Obsidian 800D, Windows 7 x64

    Alienware X-51, Core i3@3.3, 4 gb 1333, 1 TB WD, Evga Geforce 650ti
    Reply With Quote Reply With Quote
  6. March 4th, 2013 02:39 AM #6
    Midknyte's Avatar
    Midknyte
    Midknyte is offline Caffeine Fiend
    Join Date
    May 2006
    Location
    Arkham Asylum, Cell 13
    Posts
    3,338
    You can run Libreoffice without Java. Certain things won't work, but it's not absolutely required.

    http://ask.libreoffice.org/en/questi...-require-java/
    https://wiki.documentfoundation.org/Development/Java
    UBCD5
    Reply With Quote Reply With Quote
  7. March 9th, 2013 11:05 AM #7
    DanceMan's Avatar
    DanceMan
    DanceMan is offline Procrastinating Member
    Join Date
    Jun 2000
    Location
    Vancouver, B.C., Canada
    Posts
    7,981
    The Java flaw appears to involve a browser plugin. I assume I needn't worry that much about it in the office apps. But I guess I should search it and update it.
    Go Silent SPCR
    Useful PSU info
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

     

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts

Forum Rules