Oracle Releases Security Patch to Eliminate Java Vulnerabilities on Windows

Ivan Jenic By: Ivan Jenic
2 minute read

Home » News » Oracle Releases Security Patch to Eliminate Java Vulnerabilities on Windows

Oracle just issued a security patch for a Java vulnerability, which can be exploited when installing Java 6, 7 or 8 on the Windows platform. The latest Java security patch is labelled as Security Alert CVE-2016-0603. As Oracle says, the vulnerability could cause a ‘complete compromise of the system,’ if successfully exploited.

The vulnerability allows malicious software to be installed on users’ computers when they visit a malicious site, and download suspicious files on their computers. However, the vulnerability is present only during the installation process of Java 6, 7 and 8, which makes it relatively complex to exploit, but additional security measures can’t hurt.

“Because the exposure exists only during the installation process, users need not upgrade existing Java installations to address the vulnerability. However, Java users who have downloaded any old version of Java prior to 6u113, 7u97 or 8u73, should discard these old downloads and replace them with 6u113, 7u97 or 8u73 or later, “ says Oracle.

Security Alert CVE-2016-0603 is cumulative, which means that once you download it, you will also receive all previous Critical Patch Updates and Security Alerts released by Oracle

Use official Java downloads only!

Along with the announcement, Oracle also warned users to download all Java installers from its official site only, because downloading Java from an unofficial site could lead to downloading a malicious software.

“As a reminder, Oracle recommends that Java home users visit Java.com to ensure that they are running the most recent version of Java SE and that all older versions of Java SE have been completely removed. Oracle further advises against downloading Java from sites other than Java.com as these sites may be malicious.”

Attackers are looking for various ways to “break into” users’ PCs, mainly through third-party programs and services. We remind you that Adobe also released a security update for its Flash Player, some time ago, which tells us that companies are aware of the possible vulnerabilities, and they’re constantly working on new security patches to make users as safe as possible.

Discussions

Next up

Getting Avipbb.sys error on your PC? Fix it with these solutions

Emmanuel Johnson avatar. By: Emmanuel Johnson
5 minute read

Errors like the avipbb.sys can be very frustrating for a beginner to fix. Even some professionals might encounter issues while fixing this error. Having this […]

Continue Reading

Microsoft Teams gets customized backgrounds, live subtitles and more

Rabia Noureen avatar. By: Rabia Noureen
4 minute read

Microsoft rolled out new features to Microsoft Teams — an enterprise chat-based collaboration solution. Enterprise users will find there is a new Microsoft Whiteboard integration […]

Continue Reading

Kb4489894 comes with BSOD errors and app launch issues

Rabia Noureen avatar. By: Rabia Noureen
3 minute read

Microsoft releases another batch of cumulative updates for various versions of Windows 10 on the third Tuesday of the month.  Although the update brings plenty of […]

Continue Reading