PT-2009-6098 · Sun+3 · Sun Java Se+5
Published
2009-11-05
·
Updated
2018-10-30
·
CVE-2009-3873
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Sun Java SE versions prior to 5.0 Update 22
Sun Java SE versions prior to 6 Update 17
Sun SDK and JRE versions prior to 1.4.2 24
Description
The issue allows remote attackers to gain privileges via a crafted image file, related to a "quantization problem" in the JPEG Image Writer.
Recommendations
For Sun Java SE versions prior to 5.0 Update 22, update to version 5.0 Update 22 or later.
For Sun Java SE versions prior to 6 Update 17, update to version 6 Update 17 or later.
For Sun SDK and JRE versions prior to 1.4.2 24, update to version 1.4.2 24 or later.
Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Hp-Ux
Jre
Java Platform
Red Hat
Sun Java Se
Sun Sdk