Critical Java vulnerability (again?).. Disable Java ASAP!

Internet is again put on notice by yet another critical Java security flaw. I mean how many times have we heard about it so far. But anyways, it's better for all to stay safe.

The latest was uncovered by Adam Gowdiak -- http://edition.cnn.com/2013/01/11/tech/web/java-vulnerability/

Best to disable Java in all browsers -- http://www.java.com/en/download/help/disable_browser.xml

US-CERT is advising people to disable Java in Web browsers.

Few articles that might be of help:

https://krebsonsecurity.com/how-to-unplug-java-from-the-browser/

It's particularly messy for IE. You may want to look for this registry key:

  • HKEY_LOCAL_MACHINE\Software\JavaSoft\Java Plug-in\{version}\UseJava2IExplorer
or
  • HKEY_LOCAL_MACHINE\Software\Wow6432Node\JavaSoft\Java Plug-in\{version}\UseJava2IExplorer

Also look at these for much more details:

http://www.kb.cert.org/vuls/id/636312

http://support.microsoft.com/kb/2751647