Following our report earlier this week on a dangerous bug in Java SE 7 for Mac, which could post a significant risk for a number of users, Oracle has now released an update patching the exploit.
Oracle’s announcement about the update includes a description of the exploit:
If successfully exploited, these vulnerabilities can provide a malicious attacker the ability to plant discretionary binaries onto the compromised system, e.g. the vulnerabilities can be exploited to install malware, including Trojans, onto the targeted system. Note that this malware may in some instances be detected by current antivirus signatures upon its installation.
The update is available now, and can be downloaded immediately from Java’s download page.