Java: 50 faults corrected but the software remains vulnerable

The Java environment is still in turmoil. Fifty faults have been corrected in the latest update to Oracle. But it remains vulnerable to attacks and new discoveries are still gaps. Many people advise to disable it as soon as possible.

 Java: 50 faults corrected but the software remains vulnerablePosted by Hinde Benabdelhanin on 5 February 2013.At the categories A, cybercrime, NewsKeywords: fault vulnerability, Java, update Oracle
The Java environment is still in turmoil. Fifty faults have been corrected in the latest update to Oracle. But it remains vulnerable to attacks and new discoveries are still gaps. Many people advise to disable it as soon as possible.
Java security java faillure: 50 faults corrected but the software remains vulnerableJava urgency given the magnitude of faults
Major flaws were detected in the Java Oracle Adam Gowdiak of Security Explorations. In our article "Java flaw threatens 1 billion computers in the world," we explain that these faults can "circumvent the barriers in place and run malicious code on a user's machine that would visit one trapped page, potentially allowing the hacker to take control of the computer and steal information. "
Mid-January, Homeland Security declared that "this vulnerability and earlier have been widely exploited by hackers, and new Java vulnerabilities are likely to be found."
Therefore, in an emergency, Oracle has developed an update of its system. Originally scheduled for February 19, it has overdrive and proposes two weeks in advance to update the software, the Critical Patch Update. The company explains on his blog that "Oracle has accelerated the release of this update, because the active exploitation of any of the vulnerabilities affecting the Java Runtime Environment (JRE) in browsers desktops was eliminated with this Critical Patch Update. ". Obviously Oracle recommend downloading the update as soon as possible.Java under the glare of critical
Under the spotlight, Oracle is under pressure and must meet the criticisms that have been made about the discovered vulnerabilities. Despite the 50 faults corrected, 49 were critical (!), The software is still not reliable. Given the magnitude of security breaches, Oracle stated that two years would be needed to fill them. The next update is scheduled for 18 June 2013. And what about the deficit in terms of image must also manage Oracle if it is only the crisis is far from being resolved.
In addition, U.S. authorities advise disable Java. Meanwhile, Mozilla has decided to prevent the automatic startup of the plugin. Apple had excluded from its sailors decided after this update to reactivate the default for OS X Lion, Mountain Lion and Snow Leopard.
So a tip: if you do not need Java, do not take risk, disable it.