PT-2009-3683 · Oracle+1 · Java Se Development Kit+2

Published

2009-03-25

Updated

2018-10-10

CVE-2009-1105

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Java SE Development Kit (JDK) and Java Runtime Environment (JRE) versions 6 Update 10 through 6 Update 12

Description The issue allows user-assisted remote attackers to cause a trusted applet to run in an older JRE version, which can be used to exploit vulnerabilities in that older version.

Recommendations For Java SE Development Kit (JDK) and Java Runtime Environment (JRE) versions 6 Update 10 through 6 Update 12, update to a version that is not affected by this issue to prevent exploitation of vulnerabilities in older JRE versions.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2009-1105

HPSBUX02429

RHSA-2009:0392

RHSA-2009:1038

RHSA-2009:1198

RHSA-2010:0043

Affected Products

Hp-Ux

Java Runtime Environment

Java Se Development Kit

PT-2009-3683 · Oracle+1 · Java Se Development Kit+2

CVE-2009-1105

Related Identifiers

Affected Products

References · 46