Forums
New posts
Articles
Product Reviews
Policies
FAQ
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Menu
Log in
Register
Install the app
Install
Forums
General Discussions
Switcher Hangout (Windows to Mac)
how to overcome security flaw with java?
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Message
<blockquote data-quote="IvanLasston" data-source="post: 1486998" data-attributes="member: 145676"><p>What version of OSX are you running? Did you run an update? </p><p><a href="http://support.apple.com/kb/DL1572" target="_blank">Java for OS X 2012-006</a></p><p>Did you download Java from Oracle?</p><p></p><p>The original problem was that Apple was bundling its own Java - and some security flaws were found. Oracle had updated Java but Apple didn't get around to including the updates. Apple - then decided to remove Java - and make you get the latest Java from Oracle. </p><p></p><p>Just like any piece of software - Java can have vulnerabilities. It has become a target of late as it is cross platform (runs on many machines) so any exploit has the possibility of affecting a lot of people. Flash also has the same issue - so it has become a target as well.</p><p></p><p>Unfortunately - there are still a lot of websites that use Java/Flash/etc for legitimate reasons - so people have to keep the programs around. Safe browsing habits help - but any time there is a XSS type vulnerability - it is very dangerous. You could run extensions like Adblock, noscript, cookie manager, to alleviate the issue - but that usually makes browsing annoying for users. I do use all those apps and am willing to have to approve everything on a website - but most people are not willing to browse like that.</p></blockquote><p></p>
[QUOTE="IvanLasston, post: 1486998, member: 145676"] What version of OSX are you running? Did you run an update? [url=http://support.apple.com/kb/DL1572]Java for OS X 2012-006[/url] Did you download Java from Oracle? The original problem was that Apple was bundling its own Java - and some security flaws were found. Oracle had updated Java but Apple didn't get around to including the updates. Apple - then decided to remove Java - and make you get the latest Java from Oracle. Just like any piece of software - Java can have vulnerabilities. It has become a target of late as it is cross platform (runs on many machines) so any exploit has the possibility of affecting a lot of people. Flash also has the same issue - so it has become a target as well. Unfortunately - there are still a lot of websites that use Java/Flash/etc for legitimate reasons - so people have to keep the programs around. Safe browsing habits help - but any time there is a XSS type vulnerability - it is very dangerous. You could run extensions like Adblock, noscript, cookie manager, to alleviate the issue - but that usually makes browsing annoying for users. I do use all those apps and am willing to have to approve everything on a website - but most people are not willing to browse like that. [/QUOTE]
Verification
Post reply
Forums
General Discussions
Switcher Hangout (Windows to Mac)
how to overcome security flaw with java?
Top