Oracle company behind java has issued an out of box emergency patch for Java. Oracle has issued a rare out-of-band security patch for Java to fix a flaw that posed a risk to anyone installing the tool on Windows devices.
The vulnerability (CVE-2016-0603) is considered relatively complex to exploit, explained Eric P. Maurice, director of Oracle Software Security Assurance.
” To be successfully exploited, this vulnerability requires that an unsuspecting user be tricked into visiting a malicious web site and download files into the user’s system before installing Java SE 6, 7 or 8,” Oracle explained.
The fix comes around two weeks after Oracle issued security update that contained 248 fixes.