FireEye experts, the ones who first reported the existence of a limited number of attacks that leveraged the new Java zero-day, returned with more information. Apparently, there are a number of exploit servers worldwide, fact which indicates the start of a mass-scale attack.
The researchers identified nine such machines in Russia, one in Germany, one in Romania, four in the United States and a couple in Luxemburg.
The exploit code is public and it has already been added to Metasploit and the BlackHole exploit kit, so a large-scale attack is inevitable.
According to experts from Security Explorations, Oracle has already addressed the vulnerabilities leveraged by this exploit. However, so far it’s uncertain if an out-of-band patch will be made available or if the company will fix the issue only with the upcoming CPU.
In the meantime, users are advised to disable JRE. If it’s a critical component, internauts can turn to OpenJDK – the open source version of JRE.