Report: Java Vulnerabilities: Write Once, Pwn Anywhere

By Cate Cross January 28, 2016

[vc_row][vc_column width=”2/3″][sm_custom_heading heading_tag=”h1″]Java Vulnerabilities: Write Once, Pwn Anywhere[/sm_custom_heading][sm_column_text]Java Vulnerabilities ReportJava was originally released with the slogan “write once, run anywhere,” which was intended to underscore its cross-platform capabilities. Over time, Java has become ubiquitous on endpoints, so “run anywhere” can be interpreted as referring to its ubiquity. Even as fewer websites and Web applications require Java in order to operate properly, the technology is pervasive on virtually every end-user system. For a variety of reasons, Java also has become a platform that is highly vulnerable to attack.

Java’s ubiquity and vulnerabilities have made it the technology most frequently exploited by cyber attackers. So it is timely to closely explore the breadth and state of its deployment among enterprises. Bit9 undertook an examination of these questions, leveraging endpoint data across many organizations. The results are surprising and concerning:

  • Java has become the most targeted endpoint technology.
  • Most endpoints have multiple versions of Java installed, in part because the Java installation and update process often does not remove old versions.
  • Attackers often target old, vulnerable versions installed on the endpoint.
  • Fewer than 1 percent of enterprises run the latest version of Java.

[/sm_column_text][/vc_column][vc_column width=”1/3″][sm_custom_heading heading_tag=”h2″]Download Report[/sm_custom_heading][sm_contact_form id=”1740″ eloqua_campaign_id=”70180000000da5r” eloqua_form=”WebsiteReg” eloqua_lead_source=”Website – Content Download” eloqua_member_status=”Downloaded” eloqua_last_download=”Java Report” eloqua_utm_medium=”seo” eloqua_child_campaigns=”%5B%7B%7D%5D” input_shape=”sm-shape-rounded”][/vc_column][/vc_row][vc_row el_id=”ty”][vc_column el_class=”ty”][sm_file][/vc_column][/vc_row]

comments

comments for this post are closed