CVE-2009-2476

Name of the Vulnerable Software and Affected Versions Sun Java SE 6 versions prior to Update 15 OpenJDK (affected versions not specified)

Description The issue is related to the Java Management Extensions (JMX) implementation, which does not properly enforce OpenType checks. This allows context-dependent attackers to bypass intended access restrictions by leveraging finalizer resurrection to obtain a reference to a privileged object.

Recommendations For Sun Java SE 6 versions prior to Update 15, update to Update 15 or later to resolve the issue. For OpenJDK, at the moment, there is no information about a newer version that contains a fix for this vulnerability.