An Interest In:
Web News this Week
- April 20, 2024
- April 19, 2024
- April 18, 2024
- April 17, 2024
- April 16, 2024
- April 15, 2024
- April 14, 2024
Some of Our Sources
- Simplebits
- Abduzeedo
- You The Designer
- Fuel Your Creativity
- Inspiredology
- Crazy Leaf Design
- My Ink Blog
- Android Headlines
- Hashedout
- The Verge
Help Webnuz
Referal links:
March 12, 2016 04:00 am
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/o7fqnrPzCD8/2-years-later-java-security-still-broken-by-faulty-oracle-patch
2 Years Later, Java Security Still Broken By Faulty Oracle Patch
An anonymous reader writes: A faulty security patch has left Java users vulnerable to attacks in the past two years, researchers from Polish security firm Security Explorations are claiming. The issue in question is CVE-2013-5838, which was discovered and patched in October 2013. Two years later, going back over their researcher, the same security researchers have now discovered that Oracle had not only misclassified its impact but also botched the fix. In a Full Disclosureexposé, the researcher says that changing four characters in the company's original proof-of-concept code allowed them to exploit the flaw, despite Oracle's patch.Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/o7fqnrPzCD8/2-years-later-java-security-still-broken-by-faulty-oracle-patch
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot