Login

stephen · 01-12-2013, 06:34 AM

I just told my 700 Facebook friends.

DP · 01-12-2013, 12:33 PM

How do I disable it? I use Firefox and Safari.

decay · 01-12-2013, 01:38 PM

click one or more of the links here.

DP · 01-12-2013, 01:58 PM

decay wrote:
click one or more of the links here.

Duh. Thanx; done.

michaelb · 01-12-2013, 02:34 PM

Chakravartin wrote:
[quote=GGD]
[quote=ArtP]
One of my Mac Geek Propeller head tech support buddies responded to a list email about this earlier today with this: FYI Although Java can be installed on Macs, this warning only applies to PCs.

YMMV?

That would make one wonder why Apple took action to disable it then, assuming that report is accurate.
It's BS. The Java vulnerability exists for all versions of Java from 4 on up.
Although Java is cross platform, isn't it delivering a malicious payload that would be OS specific? I don't know, so that is a question. So they could develop an exploit for the mac using this vulnerability, but they haven't seen that yet.

bahatog8m · 01-12-2013, 04:08 PM

I read that Apple already disabled the load of the Java plugin. Why should this be done manually?

Chakravartin · 01-12-2013, 04:41 PM

bahatog8m wrote:
I read that Apple already disabled the load of the Java plugin. Why should this be done manually?

There is an update to the Quarantine mechanism on Macs running Snow Leopard or higher versions of the operating system. This update will prevent the use of the Java plugin in various web browsers.

Mac users running earlier versions of the OS will still be vulnerable.

Mac users whose Macs have not yet phoned home for the update will still be vulnerable.

Mac users whose firewalls block those updates will still be vulnerable.

kj · 01-12-2013, 05:58 PM

michaelb wrote:
[quote=Chakravartin]
[quote=GGD]
[quote=ArtP]
One of my Mac Geek Propeller head tech support buddies responded to a list email about this earlier today with this: FYI Although Java can be installed on Macs, this warning only applies to PCs.

YMMV?

That would make one wonder why Apple took action to disable it then, assuming that report is accurate.
It's BS. The Java vulnerability exists for all versions of Java from 4 on up.
Although Java is cross platform, isn't it delivering a malicious payload that would be OS specific? I don't know, so that is a question. So they could develop an exploit for the mac using this vulnerability, but they haven't seen that yet.
I would think it would deliver an evil java applet. kj.

Chakravartin · 01-12-2013, 06:31 PM

kj wrote:
[quote=michaelb]
[quote=Chakravartin]
[quote=GGD]
[quote=ArtP]
One of my Mac Geek Propeller head tech support buddies responded to a list email about this earlier today with this: FYI Although Java can be installed on Macs, this warning only applies to PCs.

YMMV?

That would make one wonder why Apple took action to disable it then, assuming that report is accurate.
It's BS. The Java vulnerability exists for all versions of Java from 4 on up.
Although Java is cross platform, isn't it delivering a malicious payload that would be OS specific? I don't know, so that is a question. So they could develop an exploit for the mac using this vulnerability, but they haven't seen that yet.
I would think it would deliver an evil java applet. kj.
Cross-platform exploits exist.
http://www.zdnet.com/blog/security/cross...macs/11739

Login
Username:
Password:	Lost Password?
	Remember me