Ad: Manage updates with the Download App

Apple Java for OS X 10.7

A newer version of Apple Java for OS X 10.7 is available.

This download is served from an external site

close

NOTICE: This link will open a connection to a third-party site. CNET cannot ensure the security of software that is hosted on external sites.

Continue to download

Sponsored Products

Download Now External Download Site
Or, Learn More About Apple Java for OS X 10.7
Average User Rating stars

out of 8 user reviews

Back to product review

Full user review

  • 1.0 stars

    "Java 6, v1.6 Update 35, for BOTH 10.7 and 10.8"

    September 5, 2012  |   By zunipus

    Pros

    It mostly runs the same software on multiple platforms.

    Cons

    Java is now the single LEAST secure 3rd party software for OS X. It's even more dangerous that Adobe crapware. AVOID USING! If you must use it, TURN IT OFF while surfing the Internet.

    Summary

    This Java update is for BOTH 10.7 Lion and 10.8 Mountain Lion. There is a different Java updater for OS X 10.6 Snow Leopard.

    The update provides Java 6, v1.6 Update 35. At this time, this is the ONLY safe version of Java for OS X. If you have Oracle's Java 7 installed, aka Java 1.7, you might as well uninstall it and instead install this update from Apple.

    All other versions of Java currently have zero-day security holes that allow a malware rat to install infecting Java applets on a website that will drive-by infect Macs that visit the website. The infection requires NO user interaction at all. This is very much like a virus infection. Once a Mac is infected, the malware can bot/zombie the Mac and make it do anything the bot wrangler desires, including spewing spam, performing DDOS attacks, further infect other websites, download and install further malware, on and on.

    This past spring Java drive-by infection malware botted 600,000 Macs. Not a typo. This is the single worst Mac malware infection in history. Java is currently the least secure third party software for Mac, even worse than Adobe's crapware.

    The best approach regarding Java hereafter is to consider it dangerous when surfing the Internet. You can turn it OFF in your web browsers, depending upon whether you are at a website that requires Java or not. For general web browsing it is critical to keep Java OFF in case other drive-by security holes are discovered. You can also turn off Java entirely by using the Java Preferences app found in your Utilities folder. Just UNcheck its activity in the General tab.

    Note that this particular set of security holes does NOT affect the use of non-Internet applications at all. There are no known Trojan horses for Mac exploiting Java security holes at this time, only Internet Java applets. Therefore, there is no problem using Java at this time except when surfing the Internet.

    I hope that's helpful! I've written a couple articles about the current state of java at my Mac-Security blog:

    http://Mac-Security.blogspot.com

    Reply to this review

    Was this review helpful? (1) (0)

    Report this post

Submit your reply

Submit

The posting of advertisements, profanity, or personal attacks is prohibited.
Click here to review our site terms of use.

cancel

Add Your Review

or Log in or create an account to post a review.
You are logged in as . Please submit your review for Apple Java for OS X 10.7 2012-005
Add Your Review

The posting of advertisements, profanity, or personal attacks is prohibited.
Click here to review our site terms of use.

E-mail this review

Submit cancel

Report offensive content

If you believe this comment is offensive or violates the CNET's Site Terms of Use, you can report it below (this will not automatically remove the comment). Once reported, our staff will be notified and the comment will be reviewed.

Select type of offense:

Offensive: Sexually explicit or offensive language
Spam: Advertisements or commercial links
Disruptive posting: Flaming or offending other users
Illegal activities: Promote cracked software, or other illegal content
Submit cancel

Error

close

ERROR MESSAGE

If you think this is an error, please contact CNET TechTracker Support for further assistance.

Ok

Running Request

close

loading

Smart Install Software

close

CNET TechTracker will now automatically install software without requiring further action by you. (Note: This feature automatically accepts associated EULAs and third party applications on your behalf.)

You have selected the following software to Smart Install:

CNET TechTracker will attempt to install this software without interrupting you again. If an application requires manual installation, CNET TechTracker will download the installer and prompt you to take further action.

Proceed with Smart Install?

Confirm Standard Install Cancel