Java virus jumps out of sandbox
Security researchers are calling attention to what they called a "fairly significant" vulnerability in Sun Microsystems' Java virtual machine that gives crackers access to a user's files.
According to iDefense, the vulnerability targets the internal packages within Sun's JVM on certain versions of Java 2, Standard Edition (J2SE) 1.4.2 running on the Unix and Windows platform with Internet Explorer (IE), Mozilla and Firefox. The JVM allows Java code to run on any platform, regardless of the operating system.
By Jim Wagner at internet.com
[ Read more ]