http://www.anchordesk.com/story/story_876.html Security hole discovered in latest JDK and HotJava browser. JavaSoft shipping patch.