<p>Computerworld - A security researcher known for finding Java bugs has uncovered a new critical zero-day vulnerability in all currently-supported versions of the popular Oracle software.</p><p>The bug, which was publicly reported on the Full Disclosure security mailing list Tuesday by Adam Gowdiak, the founder and CEO of Polish security firm Security Explorations, can be leveraged to hijack a machine equipped with Java, letting attackers install malware on the system.</p><p>Windows PCs and Macs are equally at risk if their users have installed Java, or in the case of OS X, are running 10.6, aka Snow Leopard, or earlier. Snow Leopard was the last edition where Apple bundled Java with the operating system.</p><p>All currently-support versions of Java, including Java 5, Java 6 and Java 7, contain the bug.</p><p><a href="http://www.computerworld.com/s/article/9231723/Researcher_digs_up_another_zero_day_Java_bug">Keep reading...</a></p><p>Read also:</p><p><a href="http://www.forbes.com/sites/andygreenberg/2012/09/25/another-critical-security-flaw-in-java-appears-before-oracle-has-even-resolved-the-last-one/">Another Critical Security Flaw In Java Appears Before Oracle Has Even ...</a> (Forbes)</p><p><a href="http://arstechnica.com/security/2012/09/yet-another-java-flaw-allows-complete-bypass-of-security-sandbox/">Yet another Java flaw allows "complete" bypass of security sandbox</a> (Ars Technica)</p><p><a href="http://www.zdnet.com/researchers-claim-yet-another-vulnerability-exists-in-java-7000004805/">Researchers claim yet another vulnerability exists in Java</a> (ZDNet)</p><p>Explore: <a href="http://news.google.com/news/more?pz=1&ned=us&ncl=d0mPORVi0I2ZndMU3Cc4X4BpnUXZM">34 additional articles.</a></p>