Industry News

Emergency Java Security Patch – Update Now!

Oracle released another Java fix to patch the vulnerabilities uncovered this week.  In a Security Alert for CVE-2013-1493, the company advises all users to install the security patch as soon as possible considering the “severity of these vulnerabilities.”

This particular update addresses a vulnerability known as CVE-2013-1493 (US-CERT VU#688246) and a security issue “affecting Java running in web browsers,” affecting Java versions 1.5 Update 40, 1.6 Update 41 and 1.7 Update 15.

Image Credit: Oracle

“These vulnerabilities may be remotely exploitable without authentication, i.e., they may be exploited over a network without the need for a username and password,” the Oracle alert reads. “For an exploit to be successful, an unsuspecting user running an affected release in a browser must visit a malicious web page that leverages these vulnerabilities. Successful exploits can impact the availability, integrity, and confidentiality of the user’s system.”

Java installed on servers, standalone Java desktop applications, embedded Java applications or Oracle server-based software are NOT affected by the precise bugs.

Install this latest update immediately, or make sure the automated update system has already installed it. High profile targets such as Twitter, Facebook and Apple have already experienced the perils of these Java vulnerabilities being actively exploited by criminals. Crooks include exploits for these bugs in crime kits and use them to launch targeted attacks against, for instance, employees of valued companies so they can breach corporate security and gain access to private data.

About the author


A blend of teacher and technical journalist with a pinch of e-threat analysis, Loredana Botezatu writes mostly about malware and spam. She believes that most errors happen between the keyboard and the chair. Loredana has been writing about the IT world and e-security for well over five years and has made a personal goal out of educating computer users about the ins and outs of the cybercrime ecosystem.

1 Comment

Click here to post a comment
  • Hi other websites operates good yet your website is running steadily which actually
    took about one minute to successfully load, I am not sure if it’s my own issue or perhaps your website problem.
    Anyways, I must thank you so much for placing beautiful post.

    I assume it has already been useful to a lot of people who came on this page.
    I personally need to point out that you have done excellent work with this as well as expect to find even more brilliant stuff from you.

    After taking a look at your articles, I have bookmarked your web site.