Java-related CVEs:
web.nvd.nist.gov
No glove, no love:
How to be safe?
navigator.javaEnabled() == true or false?
CVE-2015-2590: http://blog.trendmicro.com/trendlabs-security-intelligence/pawn-storm-update-trend-micro-discovers-new-java-zero-day-exploit/
Thanks to Trend Micro for keeping the hype alive.
Java 7 is no longer supported. Java 7u101 is available through Oracle Premier Support.
Close call: reach 1 week
: reach 1 week
Not 2day: reach 2 digits
Finger binary is not enough: reach 31 days
Deep Thought: reach 42 days
D3aL w17H 17: reach 1337 hours
java.lang.ArrayIndexOutOfBoundsException: reach 3 digits
Trial licence expired: reach 180 days
The Reaper's Toll: reach 1 year without getting attention
Don't be fooled:
Java isn't the only thing you should be worried about. There are others.
Be cautious. Learn. "Click to play", disabling plugins (better than click to play), disabling javascript or enabling "same origin policy" are nice things.