Businesses are still ignoring the threat posed by out-of-date versions of Java, with barely one in five running the latest version during August, security firm Websense has reported.
After running traffic through the firm's ThreatSeeker Intelligence Cloud, an incredible 40 percent of Java requests were found to be from Java 6 Standard Edition (SE), succeeded by Java 7 SE more than two years ago. Java 6 support ended in April 2013.
Some might have continued to run this for compatibility reasons for a time, but ignoring the issue would now be leaving them open to a range of serious exploits.
The general tendency not to update meant that 81 percent of browsers were now vulnerable to two recent vulnerabilities in particular, CVE-2013-2473 and CVE-2013-2463 from June this year, for which there were working exploits, Websense said.
To read this article in full or to leave a comment, please click here