Security flaw resolved in versions of Java 7u7 and 6u35

Security Alert for CVE-2012-4681 Released

Oracle has just released Security Alert CVE-2012-4681 to address 3 distinct but related vulnerabilities and one security-in-depth issue affecting Java running in desktop browsers. These vulnerabilities are: CVE-2012-4681, CVE-2012-1682, CVE-2012-3136, and CVE-2012-0547. These vulnerabilities are not applicable to standalone Java desktop applications or Java running on servers, i.e. these vulnerabilities do not affect any Oracle server based software.

Apparently, Oracle knew about the problem for months, and did nothing to resolve it. Who says researchers are security Security Explorations, have warned that indicate the company several months ago.

 The Venturebeat says that the security company has released a list of all the vulnerabilities of the code and sent to Oracle in April. In response, Oracle said it had received the report and that the update should be released in June. However, continue to investigate other problems until August.


To check the version you have installed should re-enable Java in the browser, if the disabled are as indicated, and access Java test page.

Due to the high severity of these vulnerabilities, Oracle recommends that customers apply this Security Alert as soon as possible. Furthermore, note that the technical details of these vulnerabilities are widely available on the Internet and Oracle has received external reports that these vulnerabilities are being actively exploited in the wild.

• Developers should download the latest release at http://www.oracle.com/technetwork/java/javase/downloads/index.html
• Java users should download the latest release of JRE at http://java.com, and of course
• Windows users can take advantage of the Java Automatic Update to get the latest release.

For more information:

• The Advisory for Security Alert CVE-2012-4681 is located at http://www.oracle.com/technetwork/topics/security/alert-cve-2012-4681-1835715.html
• Users can verify that they’re running the most recent version of Java by visiting: http://java.com/en/download/installed.jsp
• Instructions on removing older (and less secure) versions of Java can be found at http://java.com/en/download/faq/remove_olderversions.xml

 
I recommend you uninstall all previous versions of Java (JRE and JDK), and install the new versions.

Source: https://blogs.oracle.com/security/entry/security_alert_for_cve_20121

Java 7 (1.7) JRE vulnerability

Are you vulnerable to the latest Java 0-day exploit?

Test to see if you're vulnerable.

The DeepEnd Research have been in contact with Michael Schierl  the Java expert who discovered a number of Java vulnerabilities, including recent the Java Rhino CVE-2011-3544 / ZDI-11-305 and  CVE-2012-1723. We asked him to have a look at this last exploit . Michael sent his detailed analysis, which we will publish in the nearest future and a patch , which we offer on a per request basis today.

The Fix

There is no fix yet. The solution is disable Java plugin in all your browser to prevent malicious applets from running. The latest iteration of Java is version 1.7 revision 6. This is now the default version on Windows. Mac OS X still uses Java 1.6 (latest version: 1.6.33). Java 1.6.33 is NOT vulnerable to the latest 0-day exploit. However, I would not suggest that anybody downgrade from Java 1.7 to Java 1.6 as it is not yet known if version 1.6 is vulnerable to other flaws fixed in 1.7.

 Firefox

Go to Tools - Add-ons - Plugins

Look for Java Deployment Toolkit and/or Java Platform SE. Disable them all.

Java disabled in Firefox

Chrome

Go to Wrench -  Settings and Show advanced settings... - Privacy and Content settings - Plug-ins - Disable individual plug-ins... - Java - disable. It is quite difficult to find!

Java enabled in Chrome

Internet Explorer

Go to Tools - Manage Add-ons. Disable Java(tm) Plug-in SSV Helper and Java(tm) Plug-in 2 SSV Helper.

Java disabled in Internet Explorer 9

Sources : 

• http://research.zscaler.com/2012/08/are-you-vulnerable-to-latest-java-0-day.html
• http://www.deependresearch.org/2012/08/java-7-0-day-vulnerability-information.html

Jaybird java.sql.SQLException: not yet implemented

As I said, I am creating an application for professional use. I'm programming in Java and use the Firebird database. Java and chose this database because it's all in Open Source, to run on Windows, Linux, and perhaps in OS X (not tried yet).
  
I was using jaybird-full-2.1.6.jar, to make connections to store images in BLOB fields. But each time he made the connection with specific parameters, always gave the following error:

java.sql.SQLException: not yet implemented

The problem was in the library which had created the necessary methods.

The quickest solution is to use the latest version, jaybird-full-2.2.0.jar.

DAEMON Tools USB Free Beta

Brand new DAEMON Tools product for sharing USB devices. Now you can access remote USB devices that are physically located elsewhere. Try basic DAEMON Tools USB features in free beta

Functionality

• Get remote access to USB equipment (flash drive, speakers, webcam, printer etc.)
• Share USB devices to remote machines
• Connect to any USB device plugged to another computer via LAN, WAN, VPN or Internet
• Use rationally combined Server and Client parts
• Work with remote USB equipment just as if it was physically plugged to computer
• Support USB devices of all types and most popular versions
   

Try basic DAEMON Tools USB features in free beta version.Download: DAEMON Tools USB 1.0.0.0034 Beta (6.1 MB)

OS Suport

• Windows XP
• Windows Vista
• Windows Server 2003
• Windows 7
• Windows Server 2008
• Windows 7
• Windows Server 2008 R2

Java PopupMenu

A popup menu to be used in the swing. This code is simplified. Can be used in a fnal class  or within a class of its own.

public class GPaises extends javax.swing.JInternalFrame {

        private void createPopupMenu() {
            try {
           

                //Create the popup menu wiht icons .
                JPopupMenu popup = new JPopupMenu();
                JMenuItem menuItem;
                menuItem = new JMenuItem("Cut, new ImageIcon(getClass().getResource("/gii/images/cut_red.png")));
                menuItem.setHorizontalTextPosition(JMenuItem.RIGHT);
                menuItem.addActionListener(menuListener);
                popup.add(menuItem);
                menuItem = new JMenuItem("Copy", new ImageIcon(getClass().getResource("/gii/images/page_copy.png")));
                menuItem.setHorizontalTextPosition(JMenuItem.RIGHT);
                menuItem.addActionListener(menuListener);
                popup.add(menuItem);
                menuItem = new JMenuItem("Paste", new ImageIcon(getClass().getResource("/gii/images/page_paste.png")));
                menuItem.setHorizontalTextPosition(JMenuItem.RIGHT);
                menuItem.addActionListener(menuListener);
                popup.add(menuItem);
                menuItem = new JMenuItem("Delete", new ImageIcon(getClass().getResource("/gii/images/page_delete.png")));
                menuItem.setHorizontalTextPosition(JMenuItem.RIGHT);
                menuItem.addActionListener(menuListener);
                popup.add(menuItem);
                popup.addSeparator();
                menuItem = new JMenuItem("Add", new ImageIcon(getClass().getResource("/gii/images/picture_add.png")));
                menuItem.setHorizontalTextPosition(JMenuItem.RIGHT);
                menuItem.addActionListener(menuListener);
                popup.add(menuItem);
                menuItem = new JMenuItem("Save", new ImageIcon(getClass().getResource("/gii/images/picture_save.png")));
                menuItem.setHorizontalTextPosition(JMenuItem.RIGHT);
                menuItem.addActionListener(menuListener);
                popup.add(menuItem);

                //Add listener to the text area so the popup menu can come up.
                MouseListener popupListener = new PopupListener(popup);
               
               
                //ActionListener the choice of the popup, the event will buy the name / description in JMenuItem
                ActionListener menuListener = new ActionListener() {
                    public void actionPerformed(ActionEvent event) {
                        if (event.getActionCommand().contentEquals("Cur")) {
                            copy();
                        } else if (event.getActionCommand().contentEquals("Copy")) {
                            copy();
                        } else if (event.getActionCommand().contentEquals("Paste")) {
                            paste();
                        } else if (event.getActionCommand().contentEquals("Delete")) {
                            clear();
                        } else if (event.getActionCommand().contentEquals("Add")) {
                            add();
                        } else if (event.getActionCommand().contentEquals("Save")) {
                            saveAs();
                        }
                    }

                    private void copy() { 
                        //Copy action
                    }

                    private void paste() {
                        //Paste action
                    }

                    private void clear() {
                        //Clear action
                    }

                    private void add() {
                       //Add action
                    }

                    private void saveAs() {
                        //Save ass action
                    }
                };
               
               

               
                //Mouse popup Componunet listener
                //Here we define which is the component that will invoke the popup
                jLIcon.addMouseListener(popupListener);
            } catch (Exception ex) {
                //Error Exception
            }
        }
       
       
       
         class PopupListener extends MouseAdapter {

        JPopupMenu popup;

        PopupListener(JPopupMenu popupMenu) {
            popup = popupMenu;
        }

        public void mousePressed(MouseEvent e) {
            maybeShowPopup(e);
        }

        public void mouseReleased(MouseEvent e) {
            maybeShowPopup(e);
        }

        private void maybeShowPopup(MouseEvent e) {
            if (e.isPopupTrigger()) {
                popup.show(e.getComponent(),
                        e.getX(), e.getY());
            }
        }
    }
}

I accept any comment or improvement. We're always learning.

Java Right mouse click event

This code allows an t right mouse click event. For So may we popup menu. Or other action we want.

So we can add multiple actions, such as a popup menu.

 private void EventMouseReleased(java.awt.event.MouseEvent evt) {                                            
        if (SwingUtilities.isRightMouseButton(evt)) {
            //CODE
        }
    }

I accept any comment or improvement. We're always learning.