28 of the vulnerabilities "could be remotely exploitable without authentication (over a network without the need for a username and password)," says Oracle, via ZD.
The patches are available for users running Windows, Linux and Solaris. Mac users are also vulnerable, but security updates are not expected for another month.
Alarmingly, 15 of the vulnerabilities were given a 10.0 Common Vulnerability Scoring System (CVSS-SIG) severity rating. The scale goes from 1 to 10.
Given the severity, Oracle says you should update your system "as soon as possible."
Check your system for updates here: http://java.com/en/download/installed.jsp
Written by: Andre Yoskowitz @ 14 Oct 2010 18:48