Java patched but still vulnerable

23. April 2013 Security 0

Java was patched just a few days ago but already new vulnerabilities are being discovered.

Described in this Full Disclosure post, the Reflection API flaw affects all versions of Java SE 7 and, according to researcher Adam Gowdiak, “can be used to achieve a complete Java security sandbox bypass on a target system”.

So, after 42 vulnerabilities were fixed, it’s back to square one. Still, keep Java up to date at all times and if you have no need for it, disable or uninstall it.


Leave a Reply

Your email address will not be published. Required fields are marked *

*

This site uses Akismet to reduce spam. Learn how your comment data is processed.