Disabling Java Plugin with Remote Administrator

Discussion in 'ESET Server & Remote Administrator' started by saturnjct, Aug 31, 2012.

Thread Status:
Not open for further replies.
  1. saturnjct

    saturnjct Registered Member

    Joined:
    Dec 2, 2009
    Posts:
    7
    Location:
    Canada
    I was wondering if there was a way to disable the Java plugin in browsers using our Remote Admin server. This of course came to mind due to the Java vulnerability CVE 2012-4681.
     
  2. dwomack

    dwomack Eset Staff Account

    Joined:
    Mar 2, 2011
    Posts:
    588
    This is not an option with ERA as it pertains directly to the settings and plugins for your specific browser and is not related to your ESET software settings.

    If you have any software that you use to manage browser plugin or add on changes remotely, you'll have to use the same software to disable the Java plugin remotely.
     
  3. saturnjct

    saturnjct Registered Member

    Joined:
    Dec 2, 2009
    Posts:
    7
    Location:
    Canada
    Thanks for the reply. I'm not surprised by the response. Mostly, I was hoping that other ESET RAS users may have found tools that could be driven from RAS.
     
  4. rockshox

    rockshox Registered Member

    Joined:
    Oct 23, 2009
    Posts:
    261
    If I remember correctly you can disable the plugin when you install it by using an MST during deployment. You can use ORCA to create the MST and disable the plugin for IE and Mozilla in the MST.
     
  5. DrewD

    DrewD Eset Staff Account

    Joined:
    Feb 19, 2010
    Posts:
    88
    Although ESET Remote Administrator will not allow you to manage web browser plug-ins directly, (such as in disabling Java), you can deploy custom packages, and scripts, which may be capable of this, and configure them for deployment from within the ESET Remote Administrator Package Manager.

    Oracle has released a fix for the CVE 2012-4618 vulnerability.

    For protection, you should uninstall any old versions of Java, and update to the current version: Java 7 Update 7, or higher:


    http://www.oracle.com/technetwork/java/javase/7u7-relnotes-1835816.html


    http://www.oracle.com/technetwork/java/javase/downloads/index.html


    (* Apparently this new release may also have a bug, which can be exploited to bypass the Java Virtual Machine.)

    http://seclists.org/bugtraq/2012/Aug/225


    If you would like to disable the Java platform plug-in until a newer patch is released, here are the manual instructions for Internet Explorer, Firefox, and Chrome:

    How to disable the Java platform plug-in in Internet Explorer:

    http://support.microsoft.com/kb/2751647


    How to Disable the Java platform plug-in in Mozilla Firefox:

    http://support.mozilla.org/en-US/kb/How to turn off Java applets


    How to Disable the Java platform plug-in in Google Chrome:

    http://support.google.com/chrome/bin/answer.py?hl=en-GB&answer=142064


    (For Chrome, use the instructions to disable specific plugins, and then select the Java platform plug-in.)
     
Thread Status:
Not open for further replies.