Linked by David Adams on Tue 12th Jul 2011 19:08 UTC, submitted by HAL2001
Privacy, Security, Encryption ACROS Security has discovered a vulnerability in Sun Java, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused due to the application loading an executable file in an insecure manner when an out of memory condition occurs.
Thread beginning with comment 480519
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: Nice
by JAlexoid on Tue 12th Jul 2011 20:27 UTC in reply to "Nice"
JAlexoid
Member since:
2009-05-19

Then you're not on Windows, I guess? Considering you're such a security nut. Or you're just a person with a personal grudge against Java.

Reply Parent Score: 5

RE[2]: Nice
by WorknMan on Tue 12th Jul 2011 21:44 in reply to "RE: Nice"
WorknMan Member since:
2005-11-13

Then you're not on Windows, I guess? Considering you're such a security nut. Or you're just a person with a personal grudge against Java.


Well, Windows itself is not inherently insecure, unless you run insecure programs, like Java. For this reason, I don't run Java at all, and only Flash when absolutely necessary, with Flashblock turned on at all times, except for a handful of sites that I have whitelisted.

(Of course, Java itself isn't actually a program if you want to get technical about it, which makes it even worse.)

Edited 2011-07-12 21:45 UTC

Reply Parent Score: 0

RE[3]: Nice
by ebasconp on Tue 12th Jul 2011 22:42 in reply to "RE[2]: Nice"
ebasconp Member since:
2006-05-09

Could you please elaborate more on why do you think Java is so insecure for your mission critical computer?

Java, as any application, may have its security holes, but as someone told before, Java is just a process, same as your freecell.exe or your winword.exe and the capacity of damage it has is the same than the capacity of damage the user that launches it has.

So, if you run your Java apps as an administrator or as a user with elevated privileges, Java is not the problem, but you! ;)

But, I do not know, please elaborate more.

(if you do not consider Java to be a program (process, application, etc.)... then you are more dangerous for your computer than Java itself ;) )

Edited 2011-07-12 22:43 UTC

Reply Parent Score: 3

RE[3]: Nice
by JAlexoid on Wed 13th Jul 2011 14:31 in reply to "RE[2]: Nice"
JAlexoid Member since:
2009-05-19

If you wan't Java to be secure, then turn on Java security. Otherwise, you could just read up what this "hubbub" is really all about. Critical is only the title of the poorly written post...

Java is no less secure than .NET in this instance.

Reply Parent Score: 2