Java vulnerability in Mac OS X finally patched

Bryant/AC -

Apple really hosed up the Java framework, seems like they tried to move the app files around and install 1.6 on non-Core 2 Duo systems, failing miserably. Opening java Preferences.app (now in Applications - Utilities instead of Applications - Utilities - Java, going to the Network tab and clicking View showed an empty cache viewer, despite numerous shortcuts on the desktop/dock.

To get Java Web Start going again, find Java Web Start.app in Mac HD - System - Library - CoreServices and copy/paste into Applications - Utilities. This will allow web based Java apps to run. The first launch on my Core Duo MBPro showed a window that the apps were being updated to Java 6, which of course ISN'T INSTALLED when you look in java Preferences.app, shows just 1.4 and 1.5!

2 new security windows also displayed, including 1 to allow unrestricted access to the system, but then the app opened fine. Now going back to the cache viewer showed all the old apps that had been loaded, and they could be run from there.

However, shortcuts to these same Java apps on Core Duo and PowerPC systems are dead, they just bounce in the dock and disappear (shortcuts on Core 2's and Xeon's have been OK on some, not on others). Looking at the cache viewer again, the icon to install/delete the shortcuts is grayed out (something I saw in Java 6 update 11 in Windows), if you delete the desktop icon the option/icon is available to use from the cache viewer but the shortcut still fails to do anything.

I've told my customers to run from the web or cache viewer for their apps until the next update from Apple hopefully clears this up.

Has anyone figure out a workaround to the Limewire issues?

Thanks for the help on the limewire issue.

Hi Guys. If your Limewire Pro got broken - like mine, just switch back to the free version 4.17.6; it will work and keep you going until this is fixed.

My Limewire broke too, after the update too, I somehow fixed it by switching to the beta, which has some obvious problems, but it's usable. The beta is on cnet and is labeled 5.2.2. Believe it or not, I found it on accident, I clicked to download the Basic version and it redirected me to cnet with a download page for 5.2.2. It never explicitly said it was a beta on Limewire's site, I don't think.
Anyway, it's a good enough fix until the problem is fixed with the stable version.

So that means LimeWire is no longer good after this update,,,man this makes me wanna go back to windows again.

This update killed my WidgetTerm widget.

To find it:

http://support.apple.com/downloads/Java_for_Mac_OS_X_10_5_Update_4

www.mailbysnail.com

That coffee tastes great!

Apple really needs to put it's money where it's marketing mouth is. Commercials like Bean Counter (http://www.youtube.com/watch?v=MimCZikP8cY) really could apply to the Mac side of things too. Sure, OS X isn't a horrible trainwreck, but it does look bad when Apple also spends a lot of money on marketing, but yet can't seem to hire enough engineers to ensure critical vulnerabilities fixed by Sun and others make it to Java in OS X in a timely manner.

All it will take is one serious and slightly damaging exploit to sour people on the security of OS X and make them reevaluate potentially switching. Especially in the enterprise market where Apple has only been getting small scraps off the dinner table.