Wed, May 27, 2009
Critical Unpatched Mac OSX Java Vulnerability
There is a a serious flaw in the Java virtual machine shipped with
all current versions of Apple Mac OSX. It allows a Java applet to run
arbitrary commands as the user of the web browser viewing the applet.
This means a malicious web site could do harmful things to any Macintosh
that connects to it with a web browser capable of running Java applets.
No patches are presently available. Until patches become available, Mac users should disable Java applets in their web browsers, and Safari users on Mac should disable "Open safe files after downloading". For more information, see http://landonf.bikemonkey.org/code/macosx/CVE-2008-5353.20090519.html.
To be emailed any new alerts as they appear, or to cease being emailed such alerts, send email to securityalerts-request@cs.
![[Valid HTML 4.01 Transitional]](/support/security/valid-html401-blue.png){kind=small}
![[Valid RSS]](/support/security/valid-rss.png)
![[Valid Atom]](/support/security/valid-atom.png)