- 802.11n (1)
- Acceptable Use (2)
- Administration (3)
- Backup (1)
- Beta Versions (2)
- Commercial Systems (1)
- computer "bug" (1)
- Computers (14)
- DFS (1)
- Disaster Recovery (1)
- DNS (1)
- drive imaging (1)
- Drive-by Infection (3)
- e-mail (1)
- eKarma (1)
- email (1)
- FCC (1)
- File Recovery (2)
- Glitch (1)
- honesty (1)
- integrity (1)
- Malvertising (2)
- Malware (10)
- MicroSoft (1)
- Monitoring (2)
- Networking (9)
- Operating Systems (1)
- OS's (1)
- patch testing (4)
- Patch Tuesday (2)
- Patches (6)
- peripherals (1)
- Phishing (1)
- Power Failures (1)
- Power Supply (1)
- Power Surge (1)
- remote support (1)
- security (3)
- Social Engineering (1)
- Software (2)
- Surge Protectors (1)
- The Cloud (1)
- Trojan (6)
- Troubleshooting (8)
- Uncategorized (3)
- Uninterruptible Power Supply (1)
- UPS (1)
- Virus (6)
- Windows (1)
- Windows 7 (1)
- Windows ME (1)
- Windows Vista (1)
- Windows XP (1)
- Wireless (1)
- WLAN (1)
- Worm (5)
- 31. January 2012: Phishing Trip Cut Short
- 7. January 2012: Data Here, Data There, Data All Over the Place!
- 4. January 2012:
- 4. January 2012: XP starts falling behind Win 7
- 12. June 2011: Computer "Glitch" grounds the fleet!
- 12. June 2011: GFI is dropping the best thing they ever did!
- 19. January 2011: They're Back!
- 27. April 2010: McAfee agrees to cover Repair Bills for damaged XP SP3 Systems After Buggy Update
- 18. April 2010: Sun/Oracle Makes About-Face about patching Java
- 10. April 2010: April 13th 2010 Patch Tuesday- 11 important patches
Sun/Oracle Makes About-Face about patching Java
A serious vulnerability exists in Java and Sun has known about this vulnerability since around April 9th. This exploit can occur because the Java Browser Plugin is running “javaws.exe” without validating command-line parameters. Last week, when confronted about the problem, Oracle said they did not consider this vulnerability to be of high enough priority to break their quarterly patch cycle.
A U.S.-based Web site, Songlyrices.com was compromised by attackers, and was redirecting visitors to a Russian server feeding the Java attack as well as other exploits.
Now that users have started reporting that they are being infected by the drive-by Java attacks, Oracle has changed its mind and issued a patch. If you haven’t already patched this vulnerability you can download Java software at http://www.java.com/en/download/index.jsp
Leave a Reply
You must be logged in to post a comment.