Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

IMPORTANT FYI Security Update 2013-001

Removes a vulnerability whereby an attacker could force enable a malicious applet to run even if you have Java disabled in the browser. If you don't want to run the update immediately, then disable Java both in the browser AND in JavaPreferences.app, to be found in Utilities folder.


Uncheck all three checkboxes.


User uploaded file

Posted on Mar 15, 2013 7:21 AM

Reply
4 replies

Mar 15, 2013 8:49 AM in response to WZZZ

I stand corrected. This does not apply to 10.6.


CoreTypes


Available for: OS X Lion v10.7 to v10.7.5, OS X Lion Server v10.7 to v10.7.5, OS X Mountain Lion v10.8 to v10.8.2


Impact: Visiting a maliciously crafted website could allow a Java Web Start application to be launched automatically even if the Java plug-in is disabled


Description: Java Web Start applications would run even if the Java plug-in was disabled. This issue was addressed by removing JNLP files from the CoreTypes safe file type list, so the Web Start application will not be run unless the user opens it in the Downloads directory.

And this is only for standalone Java Web Start applications.

IMPORTANT FYI Security Update 2013-001

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.