Posted by: David Harley | April 2, 2012

OSX/Flashback exploits CVE-2012-0507

F-Secure’s Brod reports that a new variant of OSX/Flashback includes exploit code for CVE-2012-0507, a Java exploit recently made use of by the Blackhole exploit kit. He also points out that while Oracle has released a Java update for Windows that addresses the problem, Apple has not yet done so for OS X.

However, he has previously given details of how to disable Java in Safari and OS X. Which might be a good idea even after Apple has updated, if you don’t need Java most of the time (which probably applies to most of us).

David Harley CITP FBCS CISSP  

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Categories

%d bloggers like this: