Another Java Zero-Day Vulnerability Hits Black Market

view story

http://forums.fedoraforum.org – 1. Java Security 'Fix' Is Disguised Malware Attack https://www.informationweek.com/secu...hits/240146416 Quote: Call it malware cash and carry: Less than 24 hours after Oracle Sunday released a security update that addresses two critical zero-day vulnerabilities in Java that are being actively exploited by attackers, an online vulnerability seller began offering a brand-new Java bug for sale. 2. Latest Java Update Broken; Two New Sandbox Bypass Flaws Found https://threatpost.com/en_us/blogs/l...s-found-011813 (HowTos)