IDG Answers is a community of experts who are passionate about technology. Ask a question or answer one below.
It seems like the main goal is to trick you into installing the awful ASK toolbar or sneak in McAfee the one time you forget to uncheck the install box. Honestly, I think it is a way to Oracle to turn updates into an additional revenue stream. Aside from that, Java is pretty complicated and things that don’t look like bugs turn into vulnerabilities when combined in the right (wrong?) way by the many, many people looking for exploits every day. Plus there are a lot of bugs in JVM.