Java SE 7 update 7 is now available for download.This release fixes latest Java vulnerability that is being exploited in the wild right now.
This Security Alert addresses security issues CVE-2012-4681 (US-CERT Alert TA12-240A) and two other vulnerabilities affecting Java running in web browsers on desktops.
These vulnerabilities are not applicable to Java running on servers or standalone Java desktop applications and Oracle server-based software.
These vulnerabilities may be exploited over a network without the need for a username and password. To be successfully exploited, an unsuspecting user running an affected release in a browser will need to visit a malicious web page that leverages this vulnerability. Successful exploits can impact the availability, integrity, and confidentiality of the user’s system.
security-in-depth fix in the AWT subcomponent of the Java Runtime Environment.
Download Java (JRE – Java Runtime Environment)