Oracle has released an update to address this vulnerability. Read more here and download updates here.
Mozilla is aware of a security vulnerability in the current version of Java (Java 7 Update 10) that is being actively exploited and affects any browser using the Java plugin. Firefox users may be vulnerable to this issue if they have the Java plugin installed in their browser. Information on how to check which plugins are installed can be found here.
Impact
An attacker could exploit this vulnerability to execute malicious software on a victim’s machine. This vulnerability is being actively used in attacks and the malicious exploit code is also available in common exploit kits.
There is no patch currently available for this issue from Oracle. To protect Firefox users we have enabled Click To Play for recent versions of Java on all platforms (Java 7u9, 7u10, 6u37, 6u38). Firefox users with older versions of Java are already protected by existing plugin blocking or Click To Play defenses.
We encourage users to always keep plugins up to date. Visit the plugin check website to update plugins now.
Information to fully disable the Java plugin can be found at the following page: http://support.mozilla.org/kb/How to turn off Java applets
Director of Security Assurance
anon wrote on
Jared Wein wrote on
Daniel Veditz wrote on
Sreenath Sasikumar wrote on
skeptic wrote on
mcoates wrote on
james wrote on
Carol Wilson wrote on
Shawn wrote on
Hank wrote on
Nate wrote on
Dj wrote on
John Medearis wrote on
mcoates wrote on
Michael wrote on
Dj wrote on
stine wrote on
Jesse Ruderman wrote on
Martin wrote on
Daniel Veditz wrote on
Michael wrote on
Billy Zane wrote on
Amy wrote on
Joe wrote on
Yo Ma Ma wrote on
rashydos wrote on
Jay Dee wrote on
Daniel Veditz wrote on
Joel wrote on
Chris wrote on
Junior wrote on
Erich wrote on
Daniel Veditz wrote on
jennysweeth wrote on
Joel Rees wrote on
akane wrote on
FlashingYoshi wrote on
Wholesale Merchandise wrote on
Fred wrote on
Simon wrote on
Wilcox1976 wrote on
Richie wrote on
Ildjarn wrote on
Steve wrote on
Dr No wrote on
Helios wrote on
G_A wrote on
alex_mayorga wrote on
Forrest wrote on
Axis wrote on
Joel Rees wrote on
joel.rees wrote on
Jürgen wrote on
Mary Lou wrote on
Scott40 wrote on
Jive Dadson wrote on
Jive Dadson wrote on
David wrote on
Rad wrote on
Doug Huffman wrote on
Mike S wrote on
Sean Scott wrote on
Gary C wrote on
Anonymous wrote on
Blair Nastasi wrote on
Thomas Thomassen wrote on
Jody wrote on
Ari wrote on
Paul wrote on
Doug Huffman wrote on