More on JAVA vulnerabilities -- yesterday, Oracle released a critical Java update. This one fixes around 50 vulnerabilities. 44 of the 50+ vulnerabilities apply only to Java as it is used in browsers, but then again that's how we use it most often here in Sailnet, isn't it?
One nice thing they have done is set the default security setting to "high." This means Java will not execute an unsigned Java applet without first asking the user whether to run it or not. This should make writing exploits for future vulnerabilities much harder for the bad guys (and anyone else who tries too, of course).
If you haven't set your Java Virtual Machine (JVM) to update automatically, then now is the time to take care of it. You'll want to ensure you have installed through Java 7, update 13. Don't delay. This update is important enough that Oracle released it out of cycle rather than waiting two weeks to include it in the monthly scheduled updates. As for the browser plugins, I'm expecting them to follow suite shortly. Look to your particular browser's vendor for details.
T. P. Donnelly
S/V Tranquility Base
1984 Islander 30 Bahama