Users are being advised to disable Java in their Web browsers following the discovery of a new vulnerability that could leave them open to attack.
The US Department of Homeland Security’s Computer Emergency Readiness Team (CERT) warns that a vulnerability in Oracle Java Runtime Environment (JRE) 7 and earlier is currently being exploited.
The agency warns users that the vulnerability could allow an attacker to execute arbitrary code on vulnerable systems.
It has issued an advisory to help users recognise the vulnerability, and advises them to mitigate risks by disabling Java in Web browsers.