Did the Java 1.6.0_31 update fix the Flashback trojan problem?

java malware

Is the recent Java update of OSX (Java for OS X Lion 2012-002) to 1.6.0_31 also a bug fix for the Flashback malware?

The update is described here as:

Multiple vulnerabilities exist in Java 1.6.0_29, the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox. Visiting a web page containing a maliciously crafted untrusted Java applet may lead to arbitrary code execution with the privileges of the current user. These issues are addressed by updating to Java version 1.6.0_31. Further information is available via the Java website at http://www.oracle.com/technetwork/java/javase/releasenotes-136954.html


It fixes the vulnerability that Flashback used to install itself; this Gizmodo article gives some more info to check:

1. Run the following command in Terminal:

defaults read /Applications/Safari.app/Contents/Info LSEnvironment

2. Take note of the value, DYLD_INSERT_LIBRARIES
3. Proceed to step 8 if you got the following error message:

"The domain/default pair of (/Applications/Safari.app/Contents/Info, LSEnvironment) does not exist"

If you don't get that error message, well, time to head to F-Secure for your fix. If you're clean so far, you can move on to step eight:

8. Run the following command in Terminal:

defaults read ~/.MacOSX/environment DYLD_INSERT_LIBRARIES

9. Take note of the result. Your system is already clean of this variant if you got an error message similar to the following:

"The domain/default pair of (/Users/joe/.MacOSX/environment, DYLD_INSERT_LIBRARIES) does not exist"

If you don't have any anti-virus protection enabled, you might want to check out the excellent (and free) Sophos Home Edition


The recent Java update from Apple fixed the current malware vulnerability. If you want even more peace of mind for future malware protection you can disable Java on your mac. You can always easily re-enable it if your program requires Java. Here are the steps to disable it on your system:

  • In Safari, go to Preferences > Security > Web Content and uncheck Enable Java.

enter image description here

  • Then go to /Applications/Utilities/Java Preferences and uncheck all the checkboxes under the General tab.

enter image description here

Related

How to search files from command line under OS X?
Is there a way to set Instagram as default camera app on iPhone?
Two copies of Lion installed on one computer, now the App Store won't install apps
After monitor upgrade Steam seems low resolution
Does Terraria on Steam need Internet connection after download?
How much swearing is there in Modern Warfare 2?
Why doesn't my titan fall where I point?
Should quest mods be installed ASAP?
Do I need a nametag for my converted Zombie Villager?
Where is Tarrey Town?
What do you call a game that has other games within it?
What happens if you stay on the plane?