Apple has once again blocked Oracle's popular Java application framework from running in its Safari web browser over security concerns.
The company did not provide specifics as to why older versions of Java are blocked, saying only that it had been done "to help protect users from a recent vulnerability."
Security vendor Qualys warns that there is now a zero-day exploit out for the unsupported Java version 6 which is still being used.
The zero-day hole has been included in the Neutrino exploit toolkit, security vendor Trend Micro said, adding that versions of Java up to 7 Update 11 are vulnerable.
Apple is advising OS X users to update to the latest version of Java 7 if they need to use the application framework.
Even so, Apple is not trusting Java which has become the favoured attack vector for digital miscreants due to a large number of vulnerabilities.
OS X users should only enable Java in the browser when they need to run web apps that require it, according to Apple.
Once finished with the web app in question, Apple advises users to disable the Java browser plug in again.
.png&w=100&c=1&s=0)
.png&w=120&c=1&s=0)
Tech in Gov 2025
Forrester's Technology & Innovation Summit APAC 2025
Integrate Expo 2025
.png&w=120&c=1&s=0)
Security Exhibition & Conference 2025
Digital As Usual Cybersecurity Roadshow: Brisbane edition
.jpg&h=140&w=231&c=1&s=0)
.jpg&h=140&w=231&c=1&s=0)
