- Location
Security Explorations
"-
Oracle Added a Feature in Java That Lets Companies Control
Sep 16, 2013Oracle added a feature in Java that lets companies control what specific Java applets are allowed to run on their endpoint computers, which could help them better manage Java security risks. The new feature is called the "Deployment Rule ...
Tags: Computer Products, software
-
The New Issue Identified by Security Explorations Has Been Known for at Least 10 Years
Jul 23, 2013Security researchers from Polish vulnerability research firm Security Explorations claim to have identified a new vulnerability in Java 7 that could allow attackers to bypass the software's security sandbox and execute arbitrary code on the ...
Tags: Computer Products, software
-
A New Vulnerability That Affects The Latest Desktop and Server Versions of The JRE
Apr 25, 2013Java vulnerability hunters from Polish security research firm Security Explorations claim to have found a new vulnerability that affects the latest desktop and server versions of the Java Runtime Environment (JRE). The vulnerability is ...
Tags: Computer Products, software
-
A New Exploit for a Previously Unknown and Java Vulnerability Is Being Actively Used
Mar 5, 2013A new exploit for a previously unknown and unpatched Java vulnerability is being actively used by attackers to infect computers with malware, according to researchers from security firm FireEye. "We observed successful exploitation ...
Tags: Computer Products, Computer, software
-
Two New Bugs in The Browser Plug-in to Oracle
Feb 27, 2013A Polish security firm known for rooting out Java vulnerabilities has reported two new bugs in the browser plug-in to Oracle, Security Explorations said today. On its bug-reporting status page, Security Explorations noted that it had ...
Tags: Java vulnerabilitie, Oracle, company news
-
Java's New Security Settings Can Be Bypassed by Hackers
Jan 28, 2013Java's new security settings, designed to block "drive-by" browser attacks, can be bypassed by hackers, a researcher announced Sunday. The news came in the aftermath of several embarrassing "zero-day" vulnerabilities, and a recent ...
Tags: Bug, Moot Java, Anti-Exploit Defense
-
Oracle Must Dramatically Step up Its Security Game
Jan 25, 2013Oracle must dramatically step up its security game, security experts said this week, following the release of a number of very public vulnerabilities in Java, many of which still remain unpatched. “Oracle should just take a mulligan ...
Tags: Oracle, security game, public vulnerabilities, Java
-
Oracle Must Dramatically Step up Its Security Game
Jan 24, 2013Beset by some very public vulnerabilities in Java, and apparently unable to properly patch those bugs, Oracle must dramatically step up its security game, experts said Monday. "Oracle should just take a mulligan and redesign Java before ...
-
Researchers Claim to Have Found Two New Vulnerabilities in Java 7 Update 11
Jan 23, 2013Researchers from Security Explorations, a Poland-based vulnerability research firm, claim to have found two new vulnerabilities in Java 7 Update 11 that can be exploited to bypass the software's security sandbox and execute arbitrary code ...
-
Researchers From an Vulnerability Research Firm Found Vulnerabilities in Java 7 Update 11
Jan 21, 2013Researchers from a Poland-based vulnerability research firm on Friday announced that they had found vulnerabilities in Java 7 Update 11 that can be exploited to bypass the software’s security sandbox and execute arbitrary code on ...
Tags: Researchers, Java, Security Flaw
-
US-CERT Continued Urging Users to Disable Java Browser Plug-Ins
Jan 18, 2013Even after Oracle patched critical Java vulnerabilities on Monday, the U.S. Computer Emergency Readiness Team (US-CERT) continued urging users to disable Java browser plug-ins. "Due to the number and severity of this and prior Java ...
-
Oracle on Sunday Issued an Emergency Java Update to Patch Two Critical Vulnerabilities
Jan 16, 2013Oracle on Sunday issued an emergency Java update to patch two critical vulnerabilities, including one that had been exploited in ongoing and accelerating attacks. Also yesterday, a researcher noted for uncovering scores of Java bugs ...
Tags: Oracle, emergency Java, Java bugs
-
Oracle Should Rewrite The Programming Language Completely and Start Again From Scratch
Jan 15, 2013Going on the most recent security flaw in Java, Oracle should rewrite the programming language completely and start again from scratch, according to Bogdan Botezatu, Senior E-Threat Analyst with Bitdefender, a Romanian-based antivirus ...
Tags: Java, security flaw, Oracle, programming language
-
An Exploit Is Being Used by Cybercriminals to Infect Computers with Malware
Jan 14, 2013An exploit for a previously unknown and currently unpatched vulnerability in Java is being used by cybercriminals to infect computers with malware, according to security researchers. An independent malware researcher who uses the online ...
Tags: exploit, unpatched vulnerability, Java, cybercriminals
-
A Recent Java 7 Update Allows Users to Completely Prevent Java Applications
Dec 28, 2012A recent Java 7 update allows users to completely prevent Java applications from running inside browsers or to restrict how Web-based Java content is handled by the Java Runtime Environment (JRE) client. These features will benefit ...