Linked by lucas_maximus on Mon 5th Dec 2011 17:23 UTC
Java Patch up warmly this winter if you're running Java. That's the advice from .NET shop Microsoft, which reckons Oracle's platform is the single biggest target for hackers. Java proved the single most popular target in the 12-month period to the end of June, according to Microsoft's latest Security Intelligence Report has found here Running Java as a Web-browser Plugin is much more dangerous than Flash, and should disable the Java Applet Plugin.
Permalink for comment 499081
To read all comments associated with this story, please click here.
That was painful
by aaronmcohen on Tue 6th Dec 2011 02:25 UTC
aaronmcohen
Member since:
2011-09-19

Gosh that was a painful whitepaper to read. So Microsoft funded paper with 23 Microsoft employees writing it found a concern with a MS competitor.... shocker! personally the fact that they found few ActiveX and MS Office VBA Attacks does raise an eyebrow.

"As in previous periods, many of the more commonly exploited Java vulnerabilities are several years old, as are the security updates that have been released to address them."

Java only recently had a good update capability under Windows and still has a long way to go. Personally I'd love to see the Browser plugin/JVM get updated with zero day updates and the system JVM get updated with only service packs.

I agree that there are some improvements needed in Java Release Engineering but I am not sure MS should be the one calling foul.

Reply Score: 4