Warning! JavaScript is turned off or disabled! Some features on this website will not work.

JAVA Security Bypass Zero-day Exploit / Vulnerability

JAVA Security Bypass Zero-day Exploit / Vulnerability

The latest version of Java has a flaw which allows it to bypass security restrictions and execute code. This allows a hacker to setup a malicious website that can take advantage of this flaw and lure his/her victims to that same website, in an attempt to infect their computers with malwares.

Please continue below.

Java is a programming language used by a lot of websites (JRE) to interact with their visitors. A lot of the applications that you use and games that you play, in your browser, are possible because of Java (JRE). The versions of Java affected by this exploit are Java Runtime Environment (JRE) 1.7 and Java Development Kit (JDK) 6. It is possible that other versions may also be affected. Currently, the exploit only affects computers running Microsoft Windows.

Before Oracle releases a patch, you are required to disable Java in your browser. Click here for instructions for disabling Java in your web browser.

How hackers are able take advantage of this exploit?

Hackers can create and send out fake e-mails impersonating legitimate organizations. These e-mails are used in an attempt trick their victims into clicking on a link in the e-mail message that goes to a malicious website setup by the hackers.

They can also post links to this malicious website on Facebook, Twitter and other social networking websites.

Once the victim goes to the malicious website, the Java applet on that page executes, downloading and running a malicious program on the victim's computer. This malicious program can be a virus, Trojan horse or some other malware.

For more information about this Java exploit, please click here.

Please share with us what you know or ask a question about this article by leaving a comment below. Also, check the comment section below for additional information, if there is any.

Remember to forward suspicious, malicious, or phishing email messages to us at the following email address: info@onlinethreatalerts.com

If you want to quickly find answers to your questions, use our search engine.

Comments, Questions and Reviews
(Total: 0)

To help protect your privacy, please do not post or remove your full name, telephone number, email address, username, password, account number, credit card information or home address in your comments, questions, or reviews.

Show More of the 0 Comments, Questions or Reviews

Write Your Comment, Question or Review

Write your comment, question or review in the box below to share what you know or to get answers. Please revisit after an hour or more to view reponses or answers to you questions.

Your comment, question or review will be posted as an anonymous user because you are not signed in. Sign-in.