Skip to main content
  1. Home
  2. Computing
  3. News

Oracle says your old Java executable might install malware

By
Add as a preferred source on Google

Delete your old Java installers: they could be compromised.

If your downloads folder is a mess of installers and documents from ages past, you might occasionally check it before downloading a piece of software like Java. Oracle put out a statement Friday saying that those old installers might be compromised by files you’ve downloaded since, and that the only safe thing to do is delete the installer and download a fresh copy of Java.

Recommended Videos

The old installers are vulnerable to an exploit called binary planting, PC World is reporting. Older Java installers check the current directory and load up a number of DLL files, meaning any user who is tricked into downloading a malicious DLL could wind up giving attackers near total access to their computer.

“If successfully exploited, it results in a complete compromise of the unsuspecting user’s system,” wrote Eric P. Maurice, Oracle’s software security assurance director, who further explained that actually taking advantage of the security hole would be difficult.

“To be successfully exploited, this vulnerability requires that an unsuspecting user be tricked into visiting a malicious website, and downloading files to the user’s system before installing Java 6, 7, or 8,” he said. It’s an unlikely sequence, but not impossible — especially considering the way files tend to cluster in the downloads file and overwhelm users.

Oracle has issued a patched installer that addresses the issue, but the firm can’t retroactively patch installers already on your computer. Oracle outlined the specific versions that were vulnerable: “Java SE users who have downloaded any old version of Java SE prior to 6u113, 7u97, or 8u73 for later installation should discard these old downloads and replace them with 6u113, 7u97, or 8u73 or later,” the notice from Oracle states.

But if you really want to protect yourself from these exploits, keep your downloads folder tidy. If you don’t recognize a file there, delete it, otherwise store it somewhere else. If that’s too much effort, consider dragging executables to their own folder before running them.

Justin Pot
Justin Pot
Former Contributor
Justin's always had a passion for trying out new software, asking questions, and explaining things – tech journalism is the…
Topics
Google’s new desktop mode makes one thing clear: Samsung DeX was onto something
Android 16 finally brings a real desktop mode to Pixel phones, but Google’s long-awaited move mostly proves Samsung spent years getting the hard parts right
File, Webpage, Person

I’ve been waiting for Android to take desktop mode seriously for years. Back in 2019, I bought a OnePlus 7 Pro and wasted an embarrassing amount of time trying to brute-force its half-baked desktop mode into something useful.

The idea made perfect sense to me even then. Phones were already absurdly powerful, and the thought of carrying one real computer in my pocket felt less like science fiction and more like delayed common sense.

Read more
Anthropic launches Claude design to simplify visual creation with AI
Finally, AI that designs your slides so you don’t have to
Claude

Anthropic has introduced a new AI-powered design tool called Claude Design, aimed at helping users create visual content such as prototypes, presentations, and marketing assets through simple conversational inputs. The product, developed under Anthropic Labs, is currently available in research preview for paid Claude subscribers and is being rolled out gradually.

Claude Design is powered by the company’s latest vision model, Claude Opus 4.7, and is positioned as a tool that bridges the gap between technical design expertise and everyday creative needs.

Read more
AI triggered a RAMmageddon so bad that Apple looks like the sensible choice
Laptop prices got so stupid in 2026, that Apple turned into the value king.
Student using MacBook Neo in classroom.

I really didn't want to believe it, but here we are. Apple is now looking like the sensible laptop brand. Not the cool underdog. Not the affordable alternative. Apple, in 2026. The reason is not that the company suddenly became generous, but rather the rest of the competition has suddenly become so deranged that a MacBook lineup starting at $599 feels weirdly grounded.

Apple's MacBook Neo starts at $599, while Microsoft's own 13-inch Surface Laptop now starts at $1,199 after this month's price hikes. This isn't a small gap that you can ignore. Meanwhile, Apple's MacBook Air with M5 starts at $1,099 with 16GB of memory and 512GB of storage, which looks like one of the few premium laptops still priced by human beings.

Read more