Apple Nabs Java Exploit That Bypassed Disabled Plugin

Posted by timothy on Friday March 15, 2013 @03:52PM from the heading-them-off-before-they-head-you-off dept.

Trailrunner7 writes "Apple on Thursday released a large batch of security fixes for its OS X operating system, one of which patches a flaw that allowed Java Web Start applications to run even when users had Java disabled in the browser. There have been a slew of serious vulnerabilities in Java disclosed in the last few months, and security experts have been recommending that users disable Java in their various browsers as a protection mechanism. However, it appears that measure wasn't quite enough to protect users of some versions of OS X."

1 of 97 comments (clear)

Min score:

Reason:

Sort:

Re:Java and flash... by eksith · 2013-03-15 15:58 · Score: 5, Interesting

The problem with flash are the developers. ActionScript can do a lot of things... that doesn't mean those things should have been done. Of course if sandboxing was foolproof, things would have worked better for both technologies. Hopefully HTML5 can fill the gap for both and we can finally do away with both plugins.

--
If computers were people, I'd be a misanthrope.