Results 1 to 5 of 5

Thread: Does dated java pose major security risks?

  1. #1
    Join Date
    Jan 2009
    Beans
    Hidden!

    Does dated java pose major security risks?

    Someone on Linux Mint forum suggests that, and dated java makes browsing a little tricky.

  2. #2
    Join Date
    Apr 2007
    Location
    Monterey, California
    Beans
    62
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Does dated java pose major security risks?

    wasn't the recent mac osx virus a java issue that Apple didn't patch after Oracle issued a patch?

  3. #3
    Join Date
    Nov 2009
    Beans
    919
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Does dated java pose major security risks?

    Yes, out of date Java is currently the most frequently exploited software by the most widely used kits.

  4. #4
    Soul-Sing is offline Chocolate-Covered Ubuntu Beans
    Join Date
    Aug 2006
    Beans
    1,374
    Distro
    Ubuntu 13.04 Raring Ringtail

    Re: Does dated java pose major security risks?

    indeed RequestPolicy is a nice rel. new firefox add-on to disable/manage all kinds of "troubleware" as java.

  5. #5
    Join Date
    Mar 2011
    Beans
    669

    Re: Does dated java pose major security risks?

    Java on Windows is the Oracle JVM, which is statistically the most commonly exploited program. OSX also recently had nearly 700,000 infections in just a few days due to an unpatched Java vulnerability.

    Ubuntu provides the OpenJDK JVM, which could potentially be more secure than the Oracle JVM. I'm not sure how they differ.

    If you're using the Oracle JVM and it's out of date you're likely vulnerable to the same exploits (some of them at least) as Windows/OSX since Java, by its nature, is multiplatform (I can run the same Java code on Linux/Windows/OSX) and therefor payloads can be dropped on any system.

    On Windows your options are limited. Same goes for OSX. On Ubuntu, not so much. Ubuntu lets you use Apparmor, which will sandbox your Java plugin both preventing and restricting exploits you run across. For more info on Apparmor you can see the sticky.

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •