Both Oracle and Apple has come up with critical security updates to the companies' respective Web browser plug-ins this week.
Java Runtime Environment (JRE), which is what most people have installed on their machine, and Java Developer Kit (JDK) has been in version 1.6.0_19 (Version 6 Update 19).
This removes at least seven different vulnerabilities. According to security company Secunia vulnerabilities open for, among other things, manipulation of certain data, disclosure of potentially sensitive information, denial of service attacks or compromised by the system.
The new versions of JRE and JDK can be downloaded from this page. More information about updates and vulnerabilities can be found here.
Apple has in turn made an update to its QuickTime software. The updated version, 7.6.6, remove at least 16 different vulnerabilities, all of which affect the Windows version. Mac version is not as through the hole.
Most of the vulnerabilities associated with the overflow error when playing different types of content. They can be exploited by malicious people by persuading users of the vulnerable software to visit Web pages with content that is specifically composed by using security holes gives the attacker full access to the vulnerable system.
QuickTime can be updated using the Apple Software Update utility or through manual download from this page. More information about the vulnerabilities can be found here.
