Java users are used to patching Java for security updates as they become available. According to the YGN Ethical Hacker Group, Java.com itself was also in need of some patching for security vulnerabilities.
According to YGN, it informed Oracle of the Java.com vulnerability on April 19th. On April 23rd, Oracle replied, “Thank you for bringing this issue to our attention. We appreciate your note and wanted to let you know that we have fixed it.”
The vulnerability was a URL redirection issue which could have potentially exposed users to a phishing risk.