X
Tap here to go to the mobile version of the site.

Support Forum

This thread was closed and archived. Please ask a new question if you need help.

Java vulnerability: What you need to know

Posted

I came across this and thought to pass it on; Java vulnerability: What you need to know Norton has been monitoring a vulnerability in Java that allows cybercriminals to lure Internet users to virus-infected websites. This vulnerability puts users at risk for malware attacks. Here’s what you need to know:

   All versions of Java SE 7 Update 17 and earlier are affected.
   Norton recommends all Java users download and install the software update released by Oracle as soon as possible.
   Users may want to disable Java if it is not required.
I came across this and thought to pass it on; Java vulnerability: What you need to know Norton has been monitoring a vulnerability in Java that allows cybercriminals to lure Internet users to virus-infected websites. This vulnerability puts users at risk for malware attacks. Here’s what you need to know: All versions of Java SE 7 Update 17 and earlier are affected. Norton recommends all Java users download and install the software update released by Oracle as soon as possible. Users may want to disable Java if it is not required.

Additional System Details

Installed Plug-ins

  • Shockwave Flash 11.7 r700
  • RealPlayer(tm) LiveConnect-Enabled Plug-In
  • RealPlayer Download Plugin
  • Next Generation Java Plug-in 10.25.2 for Mozilla browsers
  • NPRuntime Script Plug-in Library for Java(TM) Deploy
  • VLC media player Web Plugin 2.0.6
  • The QuickTime Plugin allows you to view a wide variety of multimedia content in Web pages. For more information, visit the QuickTime Web site.
  • Adobe PDF Plug-In For Firefox and Netscape 10.1.7
  • DivX Plus Web Player version 2.3.1.51
  • GEPlugin
  • RealNetworks(tm) RealDownloader Chrome Background Extension Plug-In
  • RealNetworks(tm) RealDownloader PepperFlashVideoShim Plug-In
  • RealNetworks(tm) RealDownloader HTML5VideoShim Plug-In
  • RealDownloader Plugin
  • iTunes Detector Plug-in
  • Adobe Shockwave for Director Netscape plug-in, version 12.0.2.122
  • 5.1.20125.0
  • DivX VOD Helper Plug-in
  • Windows Presentation Foundation (WPF) plug-in for Mozilla browsers

Application

  • Firefox 22.0
  • User Agent: Mozilla/5.0 (Windows NT 6.0; rv:22.0) Gecko/20100101 Firefox/22.0
  • Support URL: http://support.mozilla.org/1/firefox/22.0/WINNT/en-US/

Extensions

  • Abduction! 3.0.18 ({b0e1b4a6-2c6f-4e99-94f2-8e625d7ae255})
  • About Add-ons 0.6.20110718 ({DF3074AA-1298-95DF-4315-72E3C22B503C})
  • About Pages 2.0 (jid0-AFtEdrprcME0x2cBpLsAOKC8u5Y@jetpack)
  • About support button 0.0.2 (aboutsupportbutton@firefox)
  • about:addons Launcher 1.1 (aboutaddons@about-addons-launcher.org)
  • AboutPlug 1.5 ({C49B68AC-0D21-40A7-9EE0-77D822273103})
  • Adblock Plus 2.2.4 ({d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d})
  • Adblock Plus Pop-up Addon 0.7 (adblockpopups@jessehakanen.net)
  • Add to Search Bar 2.0 (add-to-searchbox@maltekraus.de)
  • Add-on Compatibility Reporter 2.0.1 (compatibility@addons.mozilla.org)
  • Add-on Update Checker 2.4 ({891f0410-aaa2-11e0-9f1c-0800200c9a66})
  • Add-ons Manager Context Menu 0.4 (amcontextmenu@loucypher)
  • Addons Manager Hilite 1.1.1 (addonsmgrhilte@cfl)
  • Addons Recent Updates 0.1.6 (addonsRecentUpdates@infocatcher)
  • Alert the Developer 1.0.1 (alert@doesthings.com)
  • Auto Shutdown NG 0.9.12 (jid0-HZ5UvAEiWWAxT9TKLuhEgUCARqo@jetpack)
  • Autofill 3.6 (firefox-autofill@googlegroups.com)
  • Awesome Facts 1.35.1 (dracken-solutions-awesome-facts@jetpack)
  • Back to Top 7.0 ({3C9A65A6-9563-4485-BA4A-4BCD698BCFB4})
  • Caret Out 1.1 (caret-out@blogram.net)
  • Clean Links 2.2.1 ({158d7cb3-7039-4a75-8e0b-3bd0a464edd2})
  • Cleanest Addon Manager 7.0 (cam@sdrocking.com)
  • CLEO 5.0.1 (CLEO@guid.customsoftwareconsult.com)
  • Close Tab By Double Click 1.14 (close@doubleclick)
  • Config Descriptions 1.0 ({1823e248-6bf4-f6f1-7901-65a68e8b6c1e})
  • Context Search 0.4.6 ({902D2C4A-457A-4EF9-AD43-7014562929FF})
  • Customizable Shortcuts 0.5.11.1 (customizable-shortcuts@timtaubert.de)
  • Disable Anti-Adblock 3.0 ({d49a148e-817e-4025-bee3-5d541376de3b})
  • DivX Plus Web Player HTML5 <video> 2.1.2.172 ({23fcfd51-4958-4f00-80a3-ae97e717ed8b})
  • Download Sort 2.5.8 ({D9808C4D-1CF5-4f67-8DB2-12CF78BBA23F})
  • Download Statusbar 0.9.10 ({D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389})
  • Element Hiding Helper for Adblock Plus 1.2.3 (elemhidehelper@adblockplus.org)
  • Extension Options Menu 2.7 ({1feca320-6b4d-11df-a08a-0800200c9a66})
  • External Application Buttons 2 0.11 (externalappbutton@teo.pl)
  • Fast Translation 1.09.3 (fasttrans@kemot)
  • FEBE 7.3.0.1 ({4BBDD651-70CF-4821-84F8-2B918CF89CA3})
  • Find Toolbar Tweaks 3.0.0 ({E6463D12-450D-45eb-9D47-804AEB0A9561})
  • Flash Video Downloader - Youtube Downloader 3.9.0 (artur.dubovoy@gmail.com)
  • Flashblock 1.5.17 ({3d7eb24f-2740-49df-8937-200b1cc08f8a})
  • Forecastfox 2.2.2 ({0538E3E3-7E9B-4d49-8831-A227C80A7AD3})
  • Gesture Translate 0.5.9 (gesture-translate@pablocantero.com)
  • gui:config 1.2.2 (guiconfig@slosd.net)
  • Hide Add-on-Bar-Close-Button 0.2.3 (hide-add-on-bar-close-button@mauricioid.com)
  • Hotmail Watcher 1.61 (hotmailwatcher@sonthakit)
  • Link Toggler 0.3 ({CFC31648-F870-11DF-80F3-9B4EDFD72085})
  • Microsoft .NET Framework Assistant 1.3.1 ({20a82645-c095-46ed-80e3-08825760534b})
  • More About 0.0.0.4m (MoreAbout@schuzak.jp)
  • My Map 0.1 (mymap@mymap.fr)
  • No Sleep Download 2.0 (nosleepdl@august8.net)
  • Norton Toolbar 2013.4.1.2 ({2D3F3651-74B9-4795-BDEC-6DA2F431CB62})
  • NoSquint 2.1.9 (nosquint@urandom.ca)
  • Open about:permissons 1.2 (open.about.permissions@jasnapaka.com)
  • ProgressMeter 1.2 (progress-meter@bgoluboff.org)
  • Quick Translator 1.0 ({5C655500-E712-41e7-9349-CE462F844B19})
  • RealDownloader 1.3.2 ({FCE04E1F-9378-4f39-96F6-5689A9159E45})
  • Re-Pagination 2013.03.18 ({6072cb90-a0bd-11da-a746-0800200c9a66})
  • Restartless Restart 9 (restartless.restart@erikvold.com)
  • RightToClick 2.9.4 ({cd617375-6743-4ee8-bac4-fbf10f35729e})
  • Saved Passwords Button 1.2.4 (savedpasswords@adamfranco.com)
  • SearchThisSite 0.37 ({c71ff04d-f001-1fc1-1fc1-c71ff04df002})
  • Show Location 0.7.2 ({10228D1E-6D25-4ccc-903E-272D66EEC763})
  • Space Next 0.33 ({c71ff04d-f001-1fc1-1fc1-c71ff04df005})
  • Troubleshooter 1.1a (troubleshooter@mozilla.org)
  • Unzip 0.11.63 ({27e54308-4b3e-45ae-a10e-5d7c7890ee07})
  • Uppity 1.5.8 ({16cbd87c-eb99-4f5c-9825-83cf13ab7ff8})
  • Vertical Toolbar 0.5 (verticaltoolbar@xuldev.org)
  • ViewAbout 2.0.1 (viewabout@rumblingedge.com)
  • Web Page Fixer + 1.7.2 (mozillawebpagefixer@Luke.Bryan)
  • WIFI Finder 1.811.33 ({83d1c640-1cc6-4423-a138-3ddf26b1f6c7})
  • about:me 0.5 (aboutme@test.mozilla.com) (Inactive)
  • Easy Access 1.0.1 (quicklaunch@mozillaonline.com) (Inactive)
  • Easy Screen Shot 0.2.1.1 (easyscreenshot@mozillaonline.com) (Inactive)
  • FireFox Tweak 3.0 (firefoxtweak@pribic.am) (Inactive)
  • Games Puzzles Sudoku and Crosswords 0.9 (jid0-RJnyEjyiGjzbBui2er5zHZhzPSE@jetpack) (Inactive)
  • ImgPageDown 0.4 (imgpagedown@sinmax.ru) (Inactive)
  • Loading Bar 0.3.0 (loadingbar@xertoz.se) (Inactive)
  • NCH_EN 10.16.4.519 ({a87cb3e3-4db9-439d-b96b-576f5ae8459d}) (Inactive)
  • NoRedirect 1.3.2.13 ({c1970c0d-dbe6-4d91-804f-c9c0de643a57}) (Inactive)
  • Norton Vulnerability Protection 11.3.0.9 - 5 ({BBDA0591-3099-440a-AA10-41764D9DB4DB}) (Inactive)
  • Options in tab 2.0 (optionsintab@firefox) (Inactive)
  • Quick Dictionary Lookup 2.0 (lexilook@lexiology.com) (Inactive)
  • Rapidshare helper 1.1 (rsdownhelper@yahoo.com) (Inactive)
  • Right-click close 1.1 (jid0-Ilptc1BI9pM9REH4jElZfhpTueg@jetpack) (Inactive)
  • Subtitle Matcher 0.3.4 (subtitlematcher@mozilla.doslash.org) (Inactive)
  • Sudoku Variations Online 2.2 (jid0-sOstaiVtYKdBSQJk1Gc375ev9Xk@jetpack) (Inactive)
  • SuperStop 0.1 (superstop@gavinsharp.com) (Inactive)
  • YouTube MP3 Download! 1.4.34 (anthonyytmp3download@gmail.com) (Inactive)

Javascript

  • incrementalGCEnabled: True

Graphics

  • adapterDescription: ATI Radeon Xpress 1150
  • adapterDescription2:
  • adapterDeviceID: 0x5975
  • adapterDeviceID2:
  • adapterDrivers: atiumdag atiumdva atitmmxx
  • adapterDrivers2:
  • adapterRAM: Unknown
  • adapterRAM2:
  • adapterVendorID: 0x1002
  • adapterVendorID2:
  • direct2DEnabled: False
  • direct2DEnabledMessage: [u'tryNewerDriver', u'10.6']
  • directWriteEnabled: False
  • directWriteVersion: 7.0.6002.18592
  • driverDate: 11-24-2006
  • driverDate2:
  • driverVersion: 8.31.100.32
  • driverVersion2:
  • info: {u'AzureCanvasBackend': u'skia', u'AzureFallbackCanvasBackend': u'cairo', u'AzureContentBackend': u'none'}
  • isGPU2Active: False
  • numAcceleratedWindows: 0
  • numAcceleratedWindowsMessage: [u'tryNewerDriver', u'9.6']
  • numTotalWindows: 2
  • webglRendererMessage: [u'tryNewerDriver', u'9.6']
  • windowLayerManagerType: Basic

Modified Preferences

  • accessibility.typeaheadfind: True
  • accessibility.typeaheadfind.flashBar: 0
  • accessibility.typeaheadfind.timeout: 0
  • browser.cache.check_doc_frequency: 0
  • browser.cache.disk.capacity: 358400
  • browser.cache.disk.smart_size.first_run: False
  • browser.cache.disk.smart_size.use_old_max: False
  • browser.cache.disk.smart_size_cached_value: 358400
  • browser.places.smartBookmarksVersion: 4
  • browser.search.openintab: True
  • browser.search.suggest.enabled: False
  • browser.search.useDBForOrder: True
  • browser.sessionstore.max_resumed_crashes: 5
  • browser.startup.homepage: about:home
  • browser.startup.homepage_override.buildID: 20130618035212
  • browser.startup.homepage_override.mstone: 22.0
  • browser.tabs.animate: False
  • browser.tabs.closeWindowWithLastTab: False
  • browser.tabs.insertRelatedAfterCurrent: False
  • browser.tabs.loadInBackground: False
  • browser.urlbar.doubleClickSelectsAll: True
  • browser.zoom.siteSpecific: False
  • dom.disable_window_move_resize: True
  • dom.event.contextmenu.enabled: False
  • dom.max_chrome_script_run_time: 60
  • dom.max_script_run_time: 15
  • dom.mozApps.used: True
  • dom.w3c_touch_events.expose: False
  • extensions.checkCompatibility: True
  • extensions.lastAppVersion: 22.0
  • font.internaluseonly.changed: False
  • general.useragent.extra.microsoftdotnet: ( .NET CLR 3.5.30729; .NET4.0E)
  • gfx.direct2d.disabled: True
  • keyword.URL: http://nortonsafe.search.ask.com/web?o=APN10506&gct=kwd&qsrc=2869&l=dis&prt=360&chn=o0&geo=US&ver=20&q=
  • layers.acceleration.disabled: True
  • mousewheel.withcontrolkey.action: 3
  • network.cookie.cookieBehavior: 1
  • network.cookie.prefsMigrated: True
  • network.http.max-connections-per-server: 0
  • places.database.lastMaintenance: 1372337015
  • places.history.expiration.transient_current_max_pages: 50262
  • plugin.disable_full_page_plugin_for_types: application/pdf
  • plugin.importedState: True
  • plugin.state.npgoogleupdate: 0
  • plugin.state.npwlpg: 0
  • privacy.clearOnShutdown.cookies: False
  • privacy.clearOnShutdown.downloads: False
  • privacy.clearOnShutdown.formdata: False
  • privacy.clearOnShutdown.history: False
  • privacy.clearOnShutdown.sessions: False
  • privacy.cpd.extensions-nosquint: False
  • privacy.sanitize.migrateFx3Prefs: True
  • privacy.sanitize.sanitizeOnShutdown: True
  • security.ask_for_password: 2
  • security.dialog_enable_delay: 0
  • security.disable_button.openCertManager: False
  • security.disable_button.openDeviceManager: False
  • security.OCSP.disable_button.managecrl: False
  • security.password_lifetime: 20
  • storage.vacuum.last.index: 1
  • storage.vacuum.last.places.sqlite: 1370523734

Misc

  • User JS: No
  • Accessibility: No
the-edmeister
  • Top 25 Contributor
  • Moderator
5411 solutions 40308 answers

One of the reasons that Mozilla maintains a plugin check page - http://www.mozilla.com/en-US/plugincheck/ - and Firefox either automatically disables outdated plugins or warns the user that they have out dated plugins installed (depending upon the severity of vulnerability level) and refers the user to the plugin check page.

One of the reasons that Mozilla maintains a plugin check page - http://www.mozilla.com/en-US/plugincheck/ - and Firefox either automatically disables outdated plugins or warns the user that they have out dated plugins installed ''(depending upon the severity of vulnerability level)'' and refers the user to the plugin check page.
Tyler Downer
  • Top 25 Contributor
  • Moderator
1538 solutions 10736 answers

useless thread, locking. You should always have java updated if you need it, and uninstalled if you don't.

useless thread, locking. You should always have java updated if you need it, and uninstalled if you don't.