Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.
01-11-2013, 11:01 PM #1
New Zero Day Flaw Causes Apple to Quietly Block Java 7 from OS X
Apple recently disabled the Java 7 plugin on Macs through its OS X anti-malware system as a precautionary measure to protect users from a potentially serious security issue. The newly discovered zero-day flaw in Java 7 is so serious that the U.S. Department of Homeland Security has warned users to disable or uninstall it. According to the department’s Computer Emergency Readiness Team:
We are currently unaware of a practical solution to this problem. This vulnerability is being attacked in the wild, and is reported to be incorporated into exploit kits. Exploit code for this vulnerability is also available.
This isn’t the first time Apple has had issues with Java security either. Apple stopped building its own in-house Java updates last year, handing off the responsibility to Oracle. Since then Java was a part of what was the most serious malware threat to the Mac, dubbed “Flashback.” The Trojan was estimated to have infected 600,000 Macs worldwide last year before Oracle and Apple released Java patches to remove the malware. We’ll have to wait and see if either push a patch to help provide security against the current threat.
Source: MacRumors, ZDNet
Last edited by Akshay Masand; 01-12-2013 at 03:33 AM.
01-12-2013, 01:21 AM #2
Also, how do u disable it? Or uninstall? Because i know that i have Definitely installed java.
Last edited by iH85CH001; 01-12-2013 at 02:16 AM.
01-12-2013, 07:21 AM #3
It only block the Java we browserplug-in, not Java itself, misleading headline.
01-12-2013, 07:54 AM #4
Who the heck needs java? Write once, debug everywhere.....
01-12-2013, 10:16 AM #5
In other news: Apple's actions "break" millions of computers without warning! I can imagine business which needed Java for their daily applications being particularly upset at this inelegant solution.
01-12-2013, 10:31 AM #6
01-12-2013, 11:22 AM #7
Most websites that use Java interact using the plugin, not the external Java VM. For example, the NOAA NWS looping radar only worked while Java's web plugin is active. This effectively disabled the java applet.
Applications/Programs that one downloads which use Java run in the VM directly. To me, that is a bigger issue as people can download and run a 'bad' app and that alone could wreck a system.Member of the hackint0sh forums.
HowardForums Member: Haas_Dave
01-12-2013, 03:05 PM #8
The Beta version of Java 7 runs fine. I would suggest rolling back to Java 6..at least that is what I did.
01-13-2013, 09:29 AM #9
How do I prevent Apple having the ability to remotely disable or enable anything on MY machine? Turn off the Anti-Malware "feature"?
Most companies would issue a security notice, not forcibly disable something.
01-13-2013, 10:21 AM #10
01-13-2013, 01:28 PM #11
01-13-2013, 01:59 PM #12Silly we need java
Really sad, but a security system for Danes requires java ,-( And it's not even a joke. Beforehand we were using a pair of public/secret keys to this; but a couple of years ago, some smart people made this new really secure system (sorry remark heavy use of ironi in my sentence).
01-14-2013, 11:35 AM #13
Does the tool automatically disable Java 7 and roll-back to Java 6?