Researchers have found a second zero-day Java vulnerability that attackers are using to hijack computers on the web. The bugs are in Java 7 and affect Windows, Mac OS X and Linux operating systems running a Web browser with a Java plugin enabled. Both vulnerabilities are being leveraged in the Blackhole exploit kit, a backdoor Trojan kit used by cybercriminals. The flaws were introduced with the release the platform in July 28, 2011. Java steward Oracle has not released a fix for either vulnerability.”]