Unspecified vulnerability in the Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; 1.4.2_19 and earlier; and 1.3.1_24 and earlier allows remote attackers to access files and execute arbitrary code via unknown vectors related to "deserializing applets," aka CR 6646860.
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01745133
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html
http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00001.html
http://marc.info/?l=bugtraq&m=124344236532162&w=2
http://secunia.com/advisories/34495
http://secunia.com/advisories/34496
http://secunia.com/advisories/35156
http://secunia.com/advisories/35255
http://secunia.com/advisories/35416
http://secunia.com/advisories/36185
http://secunia.com/advisories/37386
http://secunia.com/advisories/37460
http://security.gentoo.org/glsa/glsa-200911-02.xml
http://sunsolve.sun.com/search/document.do?assetkey=1-66-254611-1
http://support.avaya.com/elmodocs2/security/ASA-2009-108.htm
http://support.avaya.com/elmodocs2/security/ASA-2009-109.htm
http://www.redhat.com/support/errata/RHSA-2009-0392.html
http://www.redhat.com/support/errata/RHSA-2009-0394.html
http://www.redhat.com/support/errata/RHSA-2009-1038.html
http://www.securityfocus.com/archive/1/507985/100/0/threaded
http://www.securityfocus.com/bid/34240
http://www.securitytracker.com/id?1021920
http://www.vmware.com/security/advisories/VMSA-2009-0016.html
http://www.vupen.com/english/advisories/2009/1426
http://www.vupen.com/english/advisories/2009/3316
https://exchange.xforce.ibmcloud.com/vulnerabilities/49456
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6542
Source: MITRE
Published: 2009-03-25
Updated: 2018-10-10
Type: NVD-CWE-noinfo
Base Score: 6.4
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N
Impact Score: 4.9
Exploitability Score: 10
Severity: MEDIUM
OR
ID | Name | Product | Family | Severity |
---|---|---|---|---|
89736 | VMware ESX Java Runtime Environment (JRE) Multiple Vulnerabilities (VMSA-2010-0002) (remote check) | Nessus | VMware ESX Local Security Checks | critical |
89117 | VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2009-0016) (remote check) | Nessus | Misc. | critical |
89116 | VMware ESX / ESXi Multiple Vulnerabilities (VMSA-2009-0014) (remote check) | Nessus | Misc. | critical |
64829 | Sun Java JRE Multiple Vulnerabilities (254569 / 254611 / 254608 ..) (Unix) | Nessus | Misc. | critical |
60555 | Scientific Linux Security Update : java (jdk 1.6.0) on SL4.x, SL5.x i386/x86_64 | Nessus | Scientific Linux Local Security Checks | critical |
53539 | RHEL 4 : Sun Java Runtime in Satellite Server (RHSA-2009:1662) | Nessus | Red Hat Local Security Checks | critical |
45386 | VMSA-2010-0002 : VMware vCenter update release addresses multiple security issues in Java JRE | Nessus | VMware ESX Local Security Checks | critical |
44029 | RHEL 4 / 5 : IBM Java Runtime in Satellite Server (RHSA-2010:0043) | Nessus | Red Hat Local Security Checks | critical |
42870 | VMSA-2009-0016 : VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components. | Nessus | VMware ESX Local Security Checks | critical |
42834 | GLSA-200911-02 : Sun JDK/JRE: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | critical |
42179 | VMSA-2009-0014 : VMware ESX patches for DHCP, Service Console kernel, and JRE resolve multiple security issues | Nessus | VMware ESX Local Security Checks | critical |
41528 | SuSE 10 Security Update : IBM Java 5 (ZYPP Patch Number 6253) | Nessus | SuSE Local Security Checks | critical |
41407 | SuSE 11 Security Update : Sun JDK 6 (SAT Patch Number 699) | Nessus | SuSE Local Security Checks | critical |
41406 | SuSE 11 Security Update : IBM Java 1.6.0 (SAT Patch Number 1058) | Nessus | SuSE Local Security Checks | critical |
41302 | SuSE9 Security Update : IBM Java 5 JRE and IBM Java 5 SDK (YOU Patch Number 12422) | Nessus | SuSE Local Security Checks | critical |
40747 | RHEL 4 / 5 : java-1.6.0-ibm (RHSA-2009:1198) | Nessus | Red Hat Local Security Checks | critical |
40745 | RHEL 4 / 5 : java-1.5.0-ibm (RHSA-2009:1038) | Nessus | Red Hat Local Security Checks | critical |
40742 | RHEL 4 / 5 : java-1.5.0-sun (RHSA-2009:0394) | Nessus | Red Hat Local Security Checks | critical |
40741 | RHEL 4 / 5 : java-1.6.0-sun (RHSA-2009:0392) | Nessus | Red Hat Local Security Checks | critical |
40242 | openSUSE Security Update : java-1_6_0-sun (java-1_6_0-sun-705) | Nessus | SuSE Local Security Checks | critical |
40236 | openSUSE Security Update : java-1_5_0-sun (java-1_5_0-sun-698) | Nessus | SuSE Local Security Checks | critical |
40003 | openSUSE Security Update : java-1_6_0-sun (java-1_6_0-sun-705) | Nessus | SuSE Local Security Checks | critical |
39998 | openSUSE Security Update : java-1_5_0-sun (java-1_5_0-sun-698) | Nessus | SuSE Local Security Checks | critical |
39766 | Mac OS X : Java for Mac OS X 10.4 Release 9 | Nessus | MacOS X Local Security Checks | high |
39435 | Mac OS X : Java for Mac OS X 10.5 Update 4 | Nessus | MacOS X Local Security Checks | high |
36071 | openSUSE 10 Security Update : java-1_6_0-sun (java-1_6_0-sun-6128) | Nessus | SuSE Local Security Checks | critical |
36070 | openSUSE 10 Security Update : java-1_5_0-sun (java-1_5_0-sun-6125) | Nessus | SuSE Local Security Checks | critical |
36034 | Sun Java JRE Multiple Vulnerabilities (254569 / 254611 / 254608 ..) | Nessus | Windows | high |