java exploit

Is anone familar with this oracle/java exploit:  http://securitywatch.pcmag.com/hacking/302019-security-warning-disable-java-now

If so, does anyone have any clever ideas as to thwart against it until a patch is released. I have a large internet explorer environment and need help with ideas as to a makeshift countermeasure to protect against it. Thoughts?
DEFclubAsked:
Who is Participating?
 
Rich RumbleSecurity SamuraiCommented:
Least use Privilege is a good start, users should not be administrators of their machines. That step mitigates 90% of virus/malware effectiveness as well.http://blogs.msdn.com/b/aaron_margosis/archive/2006/06/02/614226.aspx
http://richrumble.blogspot.com/2006/08/anti-admin-vs-anti-virus.html
Other than that, currently there is a Java update you should push out, and 24hrs later someone created a way around that update, so you have to rely on your AV on the client or at a proxy level to stop them. Next to that you either disable Java, uninstall Java, or only allow java to be used/called for certain trusted sites. All of which are difficult to do if you do not have the tools or resources at hand. Having the users as non-admins from jump may save you 90% of the time (like here) but there are other exploits where you need to rely on other mitigation like AV or system settings.
http://krebsonsecurity.com/how-to-unplug-java-from-the-browser/
-rich
0
 
DEFclubAuthor Commented:
thxs
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.