Java SE 6 Update 20 Patches Critical Flaw

Posted by

Oracle had released Java SE 6 Update 20 to patch a dangerous drive-by download vulnerability that exposed windows users to malicious malware attack.This vulnerability in Java was revealed by Google security researcher Tavis Ormandy.

Earlier Sun didn’t consider this as a serious flaw and didn’t issued a out-of-cycle patch. But it was rushed to release the update, as there was increase in malicious attacks based on this exploit, especially on a popular song lyrics Web site, where visitors to that website got infected with malware.

If you are using Java on windows desktop, now the Java 6 Update 20 is available through Java’s automatic updates, which also address other vulnerabilities.For more information check out the release notes.

Download: Java SE 6 Update 20