Oracle has released an emergency patch to fix a major security flaw in the latest edition of its Java software, Java 7. The vulnerability was first reported at the end of last week and allowed hackers to remotely execute code on infected machines. The patch is available for download from the Oracle website and it is recommended that all users download and install the update.
Oracle has also released an advisory statement that claims the update changes the way the Java Runtime Environment (JRE) interacts with web applets using the software. The default security level is also increased from 'normal' to 'high', which prompts the user before running certain unsigned applets.