Oracle have announced 17 critical security vulnerabilities in Java that will be fixed in an update due soon.
"All these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password"
Few details so far, and no update seems to be available yet.
Senior Directory and Registration Administrator
IT Services Division | +44 (0)161 306 3118
The University of Manchester | PGP: 0xB7B0B433