Its that time yet again, lock your doors and close your windows as there is a known potential attack vector currently being exploited through yet another security hole in the Java 1.7 runtime environment. There is no patch or work around at this time so CERT is recommending that the Java engine be turned off completely. What is Java you may ask? “The Oracle Java Runtime Environment (JRE) 1.7 allows users to run Java applications in a browser or as standalone programs. Oracle has made the JRE available for multiple operating systems.” So, in other words nobody is safe..yes even Macs! The irony here is that if you have Java 1.6 and lower you are safe..for now.
Update: Oracle has released an out band patch for this vulnerability so update to Java 1.7.07 here.
Update 2: Apparently even that patch has some holes in it. Oracle has finally come out with version 09.
Update 3: Okay..just forget it. At this time the current version (10) now has its own serious flaw. Just uninstall it.