Cisco recently released the 2014 annual security report. It’s interesting that in their key findings they pointed out that malicious exploits are gaining access to web hosting servers, name servers, and data centers. All of these are services that are easily accessible over the Internet. It also did not come as a surprise to me that Java comprises 91% of Web exploits.
Additionally, it amazes me that 76% of companies using Cisco web security services are noted as running Java 6 and this is being reported as a problem. If people upgrade, how many GUI interfaces that are used to manage Cisco devices will break? I wouldn’t upgrade either, but It’s no wonder the web security appliance is such a popular product these days.