Malke wrote:
David H. Lipman wrote:

From: "lisa harkema"



I removed the java programming group (it was a group I arbitrarily
found with the word "java" in it) and substituted a Microsoft
security group.

I did not know about this Java vulnerability. If I had, I would have
updated my java sooner even though I don't use it (on purpose,
anyway).

I do appreciate the warning as it seems I had the original Java
installed on my Dell so it was vulnerable (and likely exploited
already as I had to remove more than a few viruses and trojans
(whatever they are) when I installed spywareblaster and mcafee.

Lisa

What blows my mind is that this vulnerability has been known about
for almost 2 years by Sun and was first publicy noted by Sun on Feb
7, '06 but Dell still is shipping systems with this vulnerable
version installed.


Not only that, David - I just ran into a client's box that is running
an ancient version of Java within an HP Toolbox. I had uninstalled
Java before cleaning it up so I was most surprised to see javaw.exe
running. When I tracked it down, it came from this HP printer Toolbox
running Java 1.3.something! No way to deal with that, so I left it.
Sheesh.

Malke

I have tracked down more weird, intermittent problems to HP software than
any other manufacturer. It's gotten so bad that if a system is experiencing
weird problems one of my first troubleshooting steps is to uninstall all HP
devices and software.

--
Kerry
MS-MVP Windows - Shell/User
http://www.vistahelp.ca