| By Susan Bradley |
If you thought your Java was fully brewed with last week’s patch, guess again.
After two security researchers revealed a new vulnerability in Oracle’s Java app, the company quickly sent out a surprise update.
Hackers quickly attack Java security flaw
Event though I just told you to install a Java update, now I’m telling you to do it again!
In an unexpected move, Oracle released an update to fix last week’s Zero day vulnerability discussed in Robert Vamosi’s April 15 “In The Wild” article and in an Oracle Sun Developer Network Update Release Notes page.
As noted in Vamosi’s story, Google security researcher Tavis Ormandy publicly released information on a new Java exploit, putting pressure on Oracle to quickly come up with a patch. Hackers have already launched attacks using this vulnerability.
Originally, Sun indicated that it would not release a patch until the next quarterly update. But as reported in an April 15 Metasploit blog, security researcher Ruben Santamarta revealed his version of the Java flaw, putting even more pressure on Oracle to make an earlier release.