Comments on: Researchers: Java Zero-Day Leveraged Two Flaws

By: JCitizen

JCitizen — Fri, 28 Sep 2012 08:31:52 +0000

Flash is going away on all modern browsers, and Apple pretty much said they were dumping it. If you can’t display flash content now, I’d be surprised. (I guess – not having to play with Apples much)

By: JCitizen

JCitizen — Mon, 17 Sep 2012 07:15:17 +0000

No one solution whether AV or AM can stop all attacks. Only a blended defense can come close; and only then will you reach about 97% success. After that – only solutions that can protect in an infected environment do any good.

If you have much to protect – like banking – then maybe a LiveCD is the solution.

By: Security Guard Company

Security Guard Company — Sat, 08 Sep 2012 13:15:07 +0000

Does anyone else think Apple/mobile tablets should have Flash installed? Great blog though, very interesting.

By: JCitizen

JCitizen — Sun, 02 Sep 2012 18:36:05 +0000

Yesterday I finally received the Java 7 update from File Hippo Update Checker; guess it just takes time.

After installing it, I went back to the site, and this time it detected the old Java 6 version 33 correctly, and marked my browser as vulnerable((Comodo Dragon) So I uninstalled the older version, and isjavaexploitable once again reports the same browser as safe.

Seems they couldn’t detect the old version without the new Java 7 being on board?! ?:\ (On this Chrome derivative that is)

By: George G.

George G. — Sun, 02 Sep 2012 16:29:42 +0000

Thanks, Uzzi.

The URL you provided refers to “Comment on: New Java 7 exploit can potentially affect Macs”
I use Windows.

Also, when I try to bring up digitaloffense.net my WOT warns me that “This site has a poor reputation based on
user ratings.” So I did not go ahead and bring it up.

By: Uzzi

Uzzi — Sun, 02 Sep 2012 14:30:17 +0000

Maybe this helps…
http://reviews.cnet.com/8618-13727_7-57501517.html?assetTypeId=12&messageId=12811832

(…or ask ‘hdm’ at digitaloffense.net)

By: George G.

George G. — Sat, 01 Sep 2012 19:15:36 +0000

Thanks for the response, Bloofinpork.

Yes, I got the exact same message as you did.

Then I manually enabled isjavaexploitable and got the response describe in my comment of Aug.30 (to which you replied).

By: Rabid Howler Monkey

Rabid Howler Monkey — Sat, 01 Sep 2012 15:28:19 +0000

Solo Owl wrote:
“You can use Base with engines other than HSQLDB

A very good point (I was looking from the perspective of a personal database for non-geek users). One can use Base as a front-end to external databases on multi-user database management systems such as MySQL, PostgreSQL, etc. as Base provides both ODBC and direct (along with JDBC) access as connection options.

In addition, geeks can install and configure MySQL, PostgreSQL, etc. for use as their personal database. Just like on Windows, geeks can install and configure Microsoft SQL Server Express for their personal database and use MS Access as a front-end.

By: Bloofinpork

Bloofinpork — Fri, 31 Aug 2012 22:42:36 +0000

George, I believe something is amiss in your configuration. If I go to isjavaexploitable with noscript enabled, I get “You’ll need to enable Javascript for us to detect your Java version” — which is what I’d expect.

By: mechBgon

mechBgon — Fri, 31 Aug 2012 07:04:18 +0000

Cool! Thanks David! I’m surprised they didn’t use their friendly “Fix-It” approach, but that’s still handy.

I did ask an author on the IE team blog why the Java toggle has disappeared from the Internet Options user interface. It used to be there, now it’s not. They left in the Scripting Of Java Applets option, but it turns out not to be effective. D’oh!