GlockTalk.com
Home Forums Classifieds Blogs Today's Posts Search Social Groups



  
SIGN-UP
Notices

Glock Talk
Welcome To The Glock Talk Forums.

 
  
Reply
 
Thread Tools Display Modes
Old 01-14-2013, 14:30   #1
AntHill
Member
 
Join Date: Dec 2010
Posts: 94
JAVA threat in IE 6 thru 8

I heard the news about a JAVA security exploit in MicroSoft's Inter Explorer - specifically versions 6 thru 8. Supposedly a patch is coming out today.

I haven't seen a lot of detail of what the threat is, and why IE 9 is unaffected.

My question: since all browsers use JAVA, are all browsers affected? (Chrome, Firefox, etc)

Last edited by AntHill; 01-14-2013 at 14:42..
AntHill is offline   Reply With Quote
Old 01-14-2013, 15:49   #2
Toyman
Senior Member
 
Toyman's Avatar
 
Join Date: May 2003
Location: West Michigan
Posts: 3,867
1. It's "Microsoft"

2. It's "Internet Explorer"

3. It's all browsers.

4. See http://www.networkworld.com/communit...ke-2-years-fix
"HD Moore, chief security officer of Rapid7, said it could take two years for Oracle to fix all the security flaws in the version of Java used to surf the web; that timeframe doesn't count any additional Java exploits discovered in the future. "The safest thing to do at this point is just assume that Java is always going to be vulnerable," Moore said. "Folks don't really need Java on their desktop."

5. As a reminder, Java and Javascript are two different things.

6. If you're still using Internet Explorer, you probably don't care about vulnerabilities anyway, because it's always had holes.

7. Unless you know that you need Java, disable or uninstall it. It you're not sure, you don't need it.

8. See also http://www.glocktalk.com/forums/show....php?t=1464084
__________________
Mike - A forum post should be like a skirt. Long enough to cover the subject material, but short enough to keep things interesting.
"It's not about the odds, it's about the stakes." -
To view links or images in signatures your post count must be 10 or greater. You currently have 0 signatures.
Toyman is offline   Reply With Quote
Old 01-14-2013, 16:07   #3
mrmedina
NRA Member
 
mrmedina's Avatar
 
Join Date: Aug 2004
Location: Albuquerque,NM
Posts: 2,311
JAVA did automatic update last night for me..........I'm safe now, I think.....
__________________

Big Dawg #1406, Sub Club #104
Kalashnikov Klub# 1105, Black Rifle Forum #1105
mrmedina is offline   Reply With Quote
Old 01-14-2013, 19:51   #4
GlockFanWA
Senior Member
 
Join Date: Sep 2012
Location: Washington
Posts: 673
Java: Write once, exploit everywhere
GlockFanWA is offline   Reply With Quote
Old 01-14-2013, 20:06   #5
FLA45fan
Senior Member
 
FLA45fan's Avatar
 
Join Date: Aug 2002
Posts: 255
Sorry but I'm fairly computer illiterate - how would I disable Java? Where do I find this?

Thanks in advance.
__________________
1*
An old sheepdog
FLA45fan is offline   Reply With Quote
Old 01-15-2013, 08:09   #6
GlockFanWA
Senior Member
 
Join Date: Sep 2012
Location: Washington
Posts: 673
Go into Add/Remove Programs (if using Windows) and uninstall Java
GlockFanWA is offline   Reply With Quote
Old 01-15-2013, 12:34   #7
zodiacbw
Senior Member
 
zodiacbw's Avatar
 
Join Date: Apr 2008
Location: Buford, GA
Posts: 178
Supposedly version 7 update 11 has fixed this. Or uninstall Java
__________________
///M Power
zodiacbw is offline   Reply With Quote
Old 01-16-2013, 17:33   #8
Bushflyr
ʇno uıƃuɐɥ ʇsnɾ
 
Bushflyr's Avatar
 
Join Date: Mar 1999
Location: Western WA
Posts: 4,465
Quote:
Originally Posted by Toyman View Post
6. If you're still using Internet Explorer, you probably don't care about vulnerabilities anyway, because it's always had holes.
Troof. IE, a great way to download a better browser.
__________________
...the secret is to bang the rocks together, guys.

That which does not kill you has made a tactical error. --Tayler
Bushflyr is offline   Reply With Quote
Old 01-17-2013, 04:03   #9
Toyman
Senior Member
 
Toyman's Avatar
 
Join Date: May 2003
Location: West Michigan
Posts: 3,867
Just as soon as they fixed this one,
Another Java Exploit For Sale
__________________
Mike - A forum post should be like a skirt. Long enough to cover the subject material, but short enough to keep things interesting.
"It's not about the odds, it's about the stakes." -
To view links or images in signatures your post count must be 10 or greater. You currently have 0 signatures.
Toyman is offline   Reply With Quote
Old 01-22-2013, 08:13   #10
sappy13
Senior Member
 
sappy13's Avatar
 
Join Date: Sep 2007
Location: Bremen, GA
Posts: 2,744
Eset Nod32 blocks this guy like a champ. I checked my Management Console and noticed it blocked a variant of it a clients pc. Hes one of my bigger power users and it would have been a ****ty day for me if his pc went down.
sappy13 is offline   Reply With Quote

 
  
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump




All times are GMT -6. The time now is 06:33.




Homepage
FAQ
Forums
Calendar
Advertise
Gallery
GT Wiki
GT Blogs
Social Groups
Classifieds


Users Currently Online: 682
182 Members
500 Guests

Most users ever online: 2,672
Aug 11, 2014 at 2:31