In recent days, a disclosure of the Oracle company Java Applet Rhino script engine, the existence of high risk of remote execution code was disclosed, and the code details of the vulnerability were fully disclosed. At present, the vulnerability of the demo program has been in the domestic security forums, mainstream forums widely disseminated, and there is a trend of further expansion.
Experts point out that hackers use this vulnerability can easily create a malicious trojan virus web pages. Because Java components are widely installed on desktop computers and servers, browsing the attacker's Web page can easily be infected by Trojans, which can cause the computer to be completely controlled, and thus suffer loss of virtual account property theft and personal information leakage. And most of the security Software Web protection features, can not protect against hackers based on this vulnerability of the specially-hung horse Web page.
In this respect, the domestic well-known security software QQ computer Butler has been urgent to push the JAVA security vulnerability fixes, the installation of the hotfix can effectively defend against malicious Web page Mount horse attack, to avoid users become the next Java vulnerability victims.
QQ Computer Butler product team said, although some experts predict that a few days may break out of the use of Java loopholes in the peak of the horse, but users do not have to panic, just to open the QQ computer Butler, the vulnerability check and repair, you can safely through the crisis.
Microsoft's information security team has detected a total of 27.5 million attacks on Java vulnerabilities in the last year, with an average of 6.9 million times a quarter, Java has become the main target for hackers after Adobe, the company said in its latest issue of information security research.