dslreports logo
 
    All Forums Hot Topics Gallery
spc
uniqs
5

rfhar
The World Sport, Played In Every Country
Premium Member
join:2001-03-26
Buicktown,Mi

rfhar to StuartMW

Premium Member

to StuartMW

Re: Java is still exploitable and is likely going to remain so.

US-CERT tells users to disable Java in browsers after exploit

»www.computerworld.com/s/ ··· _exploit

Smokey Bear
veritas odium parit
Premium Member
join:2008-03-15
Annie's Pub

1 recommendation

Smokey Bear

Premium Member

said by rfhar:
US-CERT tells users to disable Java in browsers after exploit

Vulnerability Note VU#625617: »www.kb.cert.org/vuls/id/625617
said by VU#625617 :
Disable Java in web browsers

Starting with Java 7 Update 10, it is possible to disable Java content in web browsers through the Java control panel applet. Please see the Java documentation for more details.
Note: Due to what appears to potentially be a bug in the Java installer, the Java Control Panel applet may be missing on some Windows systems. In such cases, the Java Control Panel applet may be launched by finding and executing javacpl.exe manually. This file is likely to be found in C:\Program Files\Java\jre7\bin or C:\Program Files (x86)\Java\jre7\bin.
Also note that we have encountered situations where Java will crash if it has been disabled in the web browser as described above and then subsequently re-enabled. Reinstalling Java appears to correct this situation.
System administrators wishing to deploy Java 7 Update 10 or later with the "Enable Java content in the browser" feature disabled can invoke the Java installer with the WEB_JAVA=0 command-line option. More details are available in the Java documentation.