Java Security Work Remains, Bug Hunter SaysJava Security Work Remains, Bug Hunter Says Proof-of-concept attack can be used to run arbitrary Java apps, despite Oracle's recent security fix.

Researchers have built proof-of-concept exploits for an unpatched unserialize vulnerability in Apache Commons Collections, a library used in most Java rollouts.

Microsoft said that its Virtual Machine fails to catch certain malicious code in Java applets, allowing an attacker to take control of a PC ...

Uwe Schindler and Geir Magnusson offer further insight on the Java SE 7 bug and Oracle's response.

Oracle Preps Massive Java Bug FixOracle Preps Massive Java Bug Fix Java updates set to fix 42 bugs -- 39 of them exploitable vulnerabilities -- and Java 7 gets interface changes to flag suspect ...

A Java update issued by Apple through Software Update last week contained a bug that could stop some Java applications working. Apple fixed the bug and released a new update, but if you did the ...

The discovery of a serious software bug has simultaneously opened a variety of desktop computers to potential attack. The flaw has been found in Java, which works on a variety of computer ...

Critical bug in newest Java gives attackers complete control of PCs Discovery is the latest black eye for the security of the widely used Java.

You may have seen recently that Java suffers from a similar floating-point parsing bug to the one that recently affected PHP users. The basic gist of it is that for this special 64-bit floating ...