Best answer by browellView original
New java vulnerability
I'm in the process of updating Java on all my workstations with the latest update from Oracle to address the newly discovered vulnerability. Since this is going to take me quite some time to complete, can you tell me if my workstations will be protected from potential exploits of Java--with or without Oracle's latest patch?
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.
I'd be interested in hearing more from Webroot about any specific detections they have in place for this paticular exploit. Best case is that they could implement a generic detection for the actual series of steps used to exploit it.
- Web Threat Shield. WSA's URL filter that blocks malicious websites. These are where the Java exploits are located.
- Privacy protection. If a rouge Java app does run then WSA will protect your user's data from theft by that app.
- Journaling and rollback. If an exploit is used to download unknown malware, then WSA will monitor that file and journal any changes. This can then be blocked and removed when a signature or rule is created. This is the reverting that explanoit mentions.
There may be some other technical details that our threat researchers can plug in here, but this is how WSA protects your users everyday.