CERT mailing list archives
Current Activity - CERT Releases Oracle Java 7 Security Advisory
From: Current Activity <us-cert () us-cert gov>
Date: Fri, 11 Jan 2013 15:18:50 -0500
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 National Cyber Awareness System US-CERT Current Activity CERT Releases Oracle Java 7 Security Advisory Original release date: January 10, 2013 Last revised: January 11, 2013 The CERT Program has released Vulnerability Note VU#625617 to address a vulnerability in Oracle Java Runtime Environment (JRE) 7 and earlier that is currently being exploited in the wild. This vulnerability may allow an attacker to execute arbitrary code on vulnerable systems. US-CERT encourages users and administrators to review CERT Vulnerability Note VU#625617 and US-CERT Alert TA13-010A. Due to the number and severity of this and prior Java vulnerabilities, it is recommended that Java be disabled in web browsers as described in the "Solution" section of the US-CERT Alert and in the Oracle Technical Note "Setting the Security Level of the Java Client." Relevant URL(s): <http://www.us-cert.gov/cas/techalerts/TA13-010A.html> <http://www.kb.cert.org/vuls/id/625617> <http://docs.oracle.com/javase/7/docs/technotes/guides/jweb/client-security.html#disable> ____________________________________________________________________ Produced by US-CERT, a government organization. ____________________________________________________________________ This product is provided subject to this Notification: http://www.us-cert.gov/privacy/notification.html Privacy & Use policy: http://www.us-cert.gov/privacy/ This document can also be found at http://www.us-cert.gov/current/#us_cert_releases_oracle_java For instructions on subscribing to or unsubscribing from this mailing list, visit http://www.us-cert.gov/cas/signup.html -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iQEVAwUBUPBzoHdnhE8Qi3ZhAQIdJAf/f0Thuo4+6D4WsIPAOMDfVwOV4AON8uUj kTVZIM/9Hk+08yFl/ADy9aOYjajs814PF/8azIULjtZqhmHsF3a2Hn9Kre8nDjbH 0UIS6NnGhsvwadcV6Zi90U4IcpDTDIBJuvO0FQdrvFzJG0Y5A9hvO3SFFM2L4Ybh 6LAWRzWKwx1ZeIbxTFavxjGqb3jf5XOX4IoVXJs08Oic+QvxA5kLfukjLdH0/Zks 2hxQPWP9OGbtTQsYRxZakZh50l3QLxqDhjBvLWyAfV/j6qn2YZeV9P+gVS72UtpF Ai8mLbwdB6Lruh+pt6VFb6M/LJKMXznvFDR1eyIHX3rXwTzVQGscwg== =xADu -----END PGP SIGNATURE-----
Current thread:
- Current Activity - CERT Releases Oracle Java 7 Security Advisory Current Activity (Jan 10)
- <Possible follow-ups>
- Current Activity - CERT Releases Oracle Java 7 Security Advisory Current Activity (Jan 11)