Apple and Mozilla Block Vulnerable Java Plug-ins

hypnosec writes "Following news that a Java 0-day has been rolled into exploit kits, without any patch to fix the vulnerability, Mozilla and Apple have blocked the latest versions of Java on Firefox and Mac OS X respectively. Mozilla has taken steps to protect its user base from the yet-unpatched vulnerability. Mozilla has added to its Firefox add-on block-list: Java 7 Update 10, Java 7 Update 9, Java 6 Update 38 and Java 6 Update 37. Similar steps have also been taken by Apple; it has updated its anti-malware system to only allow version 1.7.10.19 or higher, thereby automatically blocking the vulnerable version, 1.7.10.18." Here are some ways to disable Java, if you're not sure how.

Java in Chrome on Windows

Last week, I was using a java app in Chrome on Windows 7 and Windows died. I could not even get Windows 7 to reinstall. However, I downloaded debian on another computer and burned a cd. Then I put the cd in the machine with broken windows, deleted all partitions, re-formated the hard drive, and installed Linux. Linux installed fine. The Firefox browser (whatever name they go by) worked just fine with Java. Yet, it was old in the debian repository. Would like a newer java, but oracle no longer allow redistribution of java with linux. OpenJDK just does not cut it! I think Sun is shooting themselves in the foot by not allowing normal java to be redistributed with linux anymore.

Since I was able to re-format my hard drive and install linux successfully, I then was successfull re-installing Windows 7.

In short, I had to format my hard drive using Linux so I could reinstall Windows 7. Just so I could use Java in browser on Windows 7 again. At least the re-install of Windows had the latest Chrome and Java 7.