If you do not have java and can live with out it then you don't need it if you are going to sites that prompt you for java then those sites will not render properly with out it.
All old versions of java must be removed because simply updating to the latest will not stop the problem with the old one as long as it is on the pc.

This little tool called javara can remove all the old java from your pc.
JavaRa 2.0

here is the verify java site to make sure you have the most recent update
Verify Java Version

to update java go to control panel to all your programs find java (the coffee cup) open it go to the update tab click check for updates.
be very careful when doing the update NOT TO GET the extra addons like toolbars etc you will need to pay attention and uncheck any of those that may be checked.
article about this latest zero day attack with java
Zero-Day Season is Not Over Yet

It is essential to keep java, adobe, and flash all updated just as you do your windows updates because the latest infections have all been due to people not updating those or leaving the vulnerable versions on their pc. An antivirus program will not do much to help you in most of these cases.

NEVER update java or anything for that matter, anywhere other than from the official java update site(or official site for what ever product you are updating), if you go to a page that offers you a link to update your java do NOT use that link you do not know if it is a real java link or a link to click on for a malware install.

This is from Susan Bradley in the latest windows secrets newsletter concerning java.

begin article:

An Aug. 30 Microsoft Malware Protection Center blog
suggests disabling Java plug-ins for browsers. But Java reminds me of a Canadian-based home show where the two hosts battle to see whether homeowners will keep their house or decide to sell it. Java is like the house: if you're not actually using it, you're better off dumping it. (Fortunately, it's quite a bit easier to walk away from Java than from a house.)

I suggest going into Windows' application removal tool (Programs and Features in Win7) and remove all Java installs you find. (Sort by application name.) Also remove or disable Java plugins in all installed browsers.

In IE and Firefox, plugin management is in Tools. For IE, it's Manage add-ons; in Firefox, it's simply Add-ons. For Chrome, it's easiest to enter chrome://plugins/ into the Web address/search box. (Chrome's plugin manager notes whether critical plugins are current, and its advanced setting lets you block/allow plugins for specific sites.)

With Java completely removed or disabled, keep an eye out for any websites that simply won't work without Java. If there are any , and you can't live without them , determine whether a site prefers the use of a particular browser and enable Java for just that one browser. For example, if you have a banking site that demands Java and Internet Explorer, install Java 7 Update 7 (download site
) only on IE.

Keep in mind that, even with Java 7, Update 7 installed, there's cause to worry. Other unpatched Java vulnerabilities are out there and in use in attacks. For example, I received a phishing attack that used a fake Microsoft template with a Java/Blackhole payload. The details can be found on an ISC Diary page
.

- What to do: Try running your system with Java completely removed or disabled. Otherwise, use Java only when necessary and limit it to one browser.

end of article.

java 7 update 7 is the latest

Giving advice to ignore updates of any kind is a very serious situation!! Updates are in most cases provided due to a security vulnerability so they should be taken very seriously. Especially java and adobe updates.

get your updated java then run the javara tool to make sure all old versions are off the pc.

Odd. I just went to the verify Java site linked to above and got the following result:

Congratulations!
You have the recommended Java installed (Version 6 Update 35).

???

I also wanted to add this excellent article by Ed Bott

I went to control panel java and see two versions sitting there but they are called 1.6.0_31 and 1.5.0_17. I suppose the 5 and 6 could refer to versions 5 and 6. Could you confirm?

This is just enough oddness to wait for some advise.

Do not confuse version with build.

On August 31st I upgraded to Java v7 Update 7 (build 1.7.0_07-b10). Java's update utility and RCs verification link shows that version to be current.

Before installing any other Java use RC's link to RA and remove all prior versions. Then install. You will be current and clean of flotsam and jetsam.

DA

any versions you show other than the latest version can be removed. Java has recently added a feature that is supposed to remove the old version it is replacing but they never put out anything that would remove the versions prior to that so it is not surprising to see some very old versions still listed on older pcs.
How I would proceed, do the update from the java icon on the pc, that should provide you with 7-7, then run javara and let it remove all other versions it finds.

go to vulnerbilities and see the listings for adobe and java, which hit the top 10 list for threats.
from that article:
"For the very first time in its history, this ranking includes products from two companies only: Adobe and Oracle (Java).
The second quarter of 2011 saw 27,289,171 vulnerable applications and files detected on users computers. We detected an average of 12 different vulnerabilities on each computer."

I went into add/remove programs and found JavaFX2.1.1 Should I remove that one? I updated to the newest version 7.7 and it is listed there and is OK. I just don't know what the JavaFX2.1.1 is. I will wait for your reply. Thank you. I have Windows XPSP3.

thirdfrt!!!