Java - Write Once, Pwn Anywhere
Java - Write Once, Pwn Anywhere
Written by Alex Armstrong   
Friday, 16 August 2013

How serious is the Java security situation? Probably fine as long as you update to the latest version, but how many do and even if you do are you still safe from old versions? This  infographic might make you more worried about the situation.

Bit9 is very interested in helping companies secure their infrastructure and has a report and an infographic about the Java vulnerabilities that have made so much noise in the technical press lately.

Based on an analysis of over one million end points, Bit9 concludes that, while the latest version of Java is safer, far too many companies have older versions. What is worse, a range of different versions are often in use. The explanation seems to be that Java updates didn't remove older versions for reasons of compatibility. The argument is that the older versions also allow attackers a way into the system. 

Click for larger version

javavulnsmall 

You might also like to see a video explaining what Bit9 thinks the problem is and, of course, what solutions it is offering.

 

Yes, it's a sales pitch, but quite an interesting one:

 javavulnICON

 

 

More Information

Java Vulnerabilities Report: Write Once, Pwn Anywhere

Related Articles

Java EE 7 Approved

Java 8 Delayed

Another Java 7 Security Flaw

Java Is Top Attack Target

 

To be informed about new articles on I Programmer, install the I Programmer Toolbar, subscribe to the RSS feed, follow us on, Twitter, FacebookGoogle+ or Linkedin,  or sign up for our weekly newsletter.

 

 
 



Comments




or email your comment to: comments@i-programmer.info

 

Banner


HHVM 3.25 Defaults To PHP7
28/03/2018

Developers from Facebook have released a new version of HHVM, the Hip Hop Virtual Machine. The PHP support in new release has been changed to default to PHP 7 rather than the PHP 5 of the previous ver [ ... ]



Apache Drill Adds YARN Support
17/04/2018

The new release of Apache Drill has added the ability to run Drill as a YARN application, along with support for HTTP Kerberos authentication using SPNEGO, and SQL syntax highlighting of queries.


More News

 

 

Last Updated ( Friday, 16 August 2013 )
 
 

   
Banner
RSS feed of news items only
I Programmer News
Copyright © 2018 i-programmer.info. All Rights Reserved.
Joomla! is Free Software released under the GNU/GPL License.