Emergency Java update plugs system compromise hole (Help Net Security)

2016-03-24 16:50

Oracle has issued an emergency security update for Java to plug a critical flaw (CVE-2016-0636) that could be exploited by luring users to visit a web page hosting the exploit. Oracle has chosen to push out an out-of-band update because the flaw is easily exploitable and because technical details about it have already been publicly disclosed (Oracle wisely does not point towards where they can be found). It’s only a matter of time until the … More →

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/Ej4c5vEf1Ho/

#compromise #java #security #CVE-2016-0636

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2016-03-24	CVE-2016-0636	Unspecified vulnerability in Oracle Java SE 7u97, 8u73, and 8u74 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to the Hotspot sub-component. network redhat oracle critical	9.3