java exploit

Is anone familar with this oracle/java exploit:

If so, does anyone have any clever ideas as to thwart against it until a patch is released. I have a large internet explorer environment and need help with ideas as to a makeshift countermeasure to protect against it. Thoughts?
Who is Participating?
Rich RumbleSecurity SamuraiCommented:
Least use Privilege is a good start, users should not be administrators of their machines. That step mitigates 90% of virus/malware effectiveness as well.
Other than that, currently there is a Java update you should push out, and 24hrs later someone created a way around that update, so you have to rely on your AV on the client or at a proxy level to stop them. Next to that you either disable Java, uninstall Java, or only allow java to be used/called for certain trusted sites. All of which are difficult to do if you do not have the tools or resources at hand. Having the users as non-admins from jump may save you 90% of the time (like here) but there are other exploits where you need to rely on other mitigation like AV or system settings.
DEFclubAuthor Commented:
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.