Wednesday, February 13, 2013

Yahoo! offers developers a tool based on a vulnerable version of Java

Application that provides a company uses a version of Java 6 Update 7, containing a number of vulnerabilities.

While Apple, Mozilla, and other tech giants are taking various steps to prevent the use of unsafe client versions Java, Yahoo! offers users a free tool for creating web-sites that require unsafe version of Java, released over 4 years ago.

Activities include a tool called SiteBuilder, which contains a number of vulnerabilities and may subject the user's computer the risk of infection. Danger seen in the fact that the tool uses a vulnerable version of Java 6 Update 7.

Given the fact that Oracle has released Java 6 Update 39, your version contains hundreds of known critical vulnerabilities that can be exploited to remotely compromise a computer.

No comments:

Post a Comment