Oracle has released new updates for Java with security enhancements for better performance.
This new release of Java SE 7 update 10 is now certified for both Windows 8 and Mac OS X operating systems.
These updates include the ability to use the control panel to prevent Java applications from running in browsers, as well as to set a level of security for unsigned applets, Java FX applications, and Java Web Start applications.
It also adds a dialogue box to warn people when Java plug-in updates are available for download.
But the update of JDK 7u10 has failed to fix some major security troubles and have brought only minor improvements, experts say.
Andrew Storms, the director of security operations at ncircle quoted “New features notwithstanding, Oracle still has a long way to go to improve security” referring to the fact that the hackers are aware that most people do not keep the Java plug-in up to date, hence leaving old flaws open to misuse by the trespassers and attackers.
HP’s security research division reported that in the year 2011 an attack integrated with the black hole toolkit had more than 75 percent success rate for the attackers.
According to the reports it is also said that for large businesses and Industries, only a full-time IT security staff will be able to figure out the new settings help and if managed centrally from Microsoft Active Directory or other directory servers.
Storms also stated “Without this access, the new settings will essentially be useless to enterprise IT teams” and pointed out that consumers are not worrying to update Java; they are unwilling to learn the uses control panel.
Besides the security flaws, other fixes include Windows command line issues, the ability to allow sandbox warning banner to grant access.