Java, the gift that keeps on giving

Security researchers have released information about two exploits affecting Java 7 that when combined allows an attacker to completely bypass the Java sandbox to install malware etc.
There is at this time no fix from Oracle for this issue.
We suggest that users follow the guide lines in this post: http://bfblogg.wpengine.com/blog/2013/02/02/java-1-7-0_13-update-fixes-50-security-vulnerabilities/

More information:
http://news.softpedia.com/news/Zero-Day-Vulnerability-Affecting-Java-7-Update-15-and-Earlier-Versions-Identified-332157.shtml
http://www.security-explorations.com/en/SE-2012-01-status.html