10-24-2008 05:17 PM
I run a program called Secunia which checks for vulnerabilities in my system.
It is coming up with a message saying there is a vulnerability because of an out of date version (188.8.131.52) of the Sun Java JRE embedded in the Harmony software/firmware?
I assume Logitech will update this as I can't. Correct?
Solved! Go to Solution.
10-25-2008 05:22 AM
Are you a WannabeFAQreader?
10-28-2008 08:43 PM
I have marked the thread as solved although I am not too pleased with the idea of having on my computer a version of Java which has been declared as vulnerable.
I read the Flash thread.
11-26-2008 01:03 PM
11-26-2008 02:12 PM
Eventually it's likely it will be updated, but in the mean time Logitech has implemented it as a closed system. This means that they only need to test with specific JVM releases and since only Logitech's programs should be using that Java install there's no real need to keep things up to date. There was a recent thread regarding their Flash version as well which describes in a lot more detail why the bundled apps are always going to be a bit out of date and why it's not a huge issue. If you search for Secunia and Flash it should come up.
I agree with aBrick
It seems very silly to me for a software developer to "implement as a closed system" (whatever that means) using a product like Java which changes so frequently due to security issues.
I am nervous about the statement "since only Logitech's programs should be using that Java install" since in my view the key word there is "should". I feel sure someone intent on compromising a computer would not pay any attention to Logitech's intention to be the only one using this version of Java.
If I am correct Logitech should make it a principle to update any included software as a matter of priority before any damage is done.