Welcome to WebmasterWorld Guest from 188.8.131.52
Forum Moderators: open
The Java Plugin flaw is known to affect both Microsoft's Windows platform and the Linux operating system. It has also been tested on Internet Explorer and rival browsers Firefox and Opera.
if anyone in here has some more info on this, it might be a good idea to share. This strikes me has having a high bugaboo factor. I wouldn't mind finding out how serious the threat is. I'm gonna head off to the security sites and see what's roiling around in there.
vnunet article [vnunet.com] - notably, they refer to the vulnerability as "...a potentially devastating flaw..."
F-Secure's Weblog Entry [f-secure.com]
Basically, it comes down to getting the most recent version of Java RTE. Anything older than the current version is vulnerable.
Which means, that seeing as the majority of people almost never update Java, we're prolly gonna be seeing this on drive-by scumware sites in the near future. (Given the speed with which vulns have been exploited lately, I think we're talking days, not weeks).
I'm just waiting for an "in the wild" infection hitting Linux distros or FireFox. Methinks MS will make some serious hay out of that, if/when it happens.