All the latest UK technology news, reviews and analysis


Apple beefs up Java security

12 Jun 2012
Apple logo

Apple has updated its OS X Java components which will reduce the risk of users falling victim to web-based attacks.

The Java for OS X update will include vulnerability fixes as well as the introduction of a pair of new security protections on both OS X 10.6 and 10.7 Lion systems as well as OS X server deployments.

The company said that the security tools would be designed to detect unsafe versions of Java and disable the components before an attacker can target the system for malware infection.

The first of the new security tools will detect how long the Java browser plug-in and Java Web Start components have been inactive on a system. If neither has been accessed in the last 35 days, OS X will automatically disable both plug-ins.

Users can re-activate the plug-ins by clicking on an alert tab which is displayed upon encountering Java code on a web page.

The second tool, meanwhile, will be designed to spot out-of-date Java installations. When a system is found to be running an outdated or vulnerable Java browser plug-in or Web Start application, the components will be disabled and the user will be asked to update their system.

Along with the protections, the company said that it would be patching 11 Java security vulnerabilities, including one which could allow a remote attacker to execute arbitrary code on a targeted system.

Both Apple's handling of security issues and the security policies of Java itself have been criticised of late by researchers who allege that the companies aren't doing enough to address security vulnerabilities in a timely manner. Researchers have suggested that all web-enabled applications and plug-ins should automatically check for updates multiple times each week.

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols
About

Shaun Nichols is the US correspondent for V3.co.uk. He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Operating Systems
What do you think?
blog comments powered by Disqus
Poll

IT curriculum poll

With coding now compulsory in schools, how important are digital skills for the next generation of school leavers?
64%
8%
19%
9%

Popular Threads

Powered by Disqus
V3 Security Summit

V3 Security Summit Day 2: Botnet, skills and BYOD intelligence incoming

Keep V3 bookmarked for news updates on all the key security concerns and topics facing businesses

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

Software Engineers - L2/L3 SDN, NFV, C++

We have requirment for Software Engineers for one of...

Retail Banking Business Analyst

Retail Banking Business Analyst My client's start...

SharePoint Junior Developer

Role summary The SharePoint Developer will take an...

IT Business Analyst

We are looking for a switched on and experienced IT Business...
To send to more than one email address, simply separate each address with a comma.