A vulnerability in the latest version of Oracle's Java software framework is under active attack, and the damage is likely to get worse thanks to the availability of reliable exploit code that works on a variety of browsers and computer platforms, security experts warn.
The flaw in Java version 1.7 was reported on Sunday afternoon by FireEye security researcher Atif Mushtaq
source : http://blog.fireeye.com/research/2012/08/zero-day-season-is-not-over-yet.html; http://arstechnica.com/security/2012/08/critical-flaw-under-active-attack-prompts-calls-to-disable-java/; http://labs.alienvault.com/labs/index.php/2012/new-java-0day-exploited-in-the-wild/
