CVE-2009-1098

Published: 25/03/2009 Updated: 10/10/2018

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Buffer overflow in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and previous versions; 6 Update 12 and previous versions; 1.4.2_19 and previous versions; and 1.3.1_24 and previous versions allows remote malicious users to access files or execute arbitrary code via a crafted GIF image, aka CR 6804998.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sun jdk 1.6.0
sun jre 1.6.0
sun jre 1.5.0
sun jdk 1.5.0
sun jre
sun jdk
sun sdk 1.3.1 03
sun jre 1.3.1
sun jre 1.3.1 10
sun jre 1.3.1 06
sun sdk 1.3.1 23
sun sdk 1.3.1 19
sun sdk 1.3.1
sun sdk 1.3.1 08
sun jre 1.3.1 20
sun jre 1.3.1 22
sun sdk 1.3.1 15
sun jre 1.3.1 2
sun jre 1.3.1 16
sun jre 1.3.1 19
sun jre 1.3.1 11
sun sdk 1.3.1 07
sun jre 1.3.1 17
sun sdk 1.3.1 10
sun jre 1.3.1 12
sun sdk 1.3.1 06
sun jre 1.3.1 03
sun sdk 1.3.1 12
sun jre 1.3.1 14
sun sdk 1.3.1 20
sun sdk 1.3.1 17
sun jre 1.3.1 08
sun sdk 1.3.1 02
sun sdk 1.3.1 18
sun sdk 1.3.1 01
sun jre 1.3.1 07
sun sdk 1.3.1 16
sun sdk 1.3.1 01a
sun jre 1.3.1 05
sun sdk 1.3.1 22
sun sdk 1.3.1 14
sun sdk 1.3.1 13
sun jre 1.3.1 13
sun jre 1.3.1 04
sun sdk 1.3.1 09
sun jre 1.3.1 09
sun jre 1.3.1 18
sun jre 1.3.1 23
sun sdk 1.3.1 04
sun jre 1.3.1 15
sun sdk 1.3.1 21
sun sdk 1.3.1 05
sun sdk
sun jre 1.3.1 01
sun sdk 1.3.1 11
sun jre 1.3.1 21
sun jre 1.4.2 7
sun jre 1.4.2 16
sun sdk 1.4.2
sun jre 1.4.2 4
sun sdk 1.4.2 10
sun sdk 1.4.2 12
sun jre 1.4.2 2
sun sdk 1.4.2 17
sun sdk 1.4.2 14
sun jre 1.4.2 15
sun sdk 1.4.2 04
sun jre 1.4.2 13
sun jre 1.4.2 1
sun sdk 1.4.2 13
sun jre 1.4.2 8
sun sdk 1.4.2 6
sun sdk 1.4.2 2
sun sdk 1.4.2 5
sun jre 1.4.2 12
sun sdk 1.4.2 1
sun sdk 1.4.2 18
sun sdk 1.4.2 4
sun jre 1.4.2 18
sun jre 1.4.2 14
sun jre 1.4.2 10
sun jre 1.4.2 17
sun sdk 1.4.2 7
sun sdk 1.4.2 09
sun sdk 1.4.2 02
sun jre 1.4.2 9
sun jre 1.4.2
sun sdk 1.4.2 16
sun sdk 1.4.2 11
sun jre 1.4.2 11
sun sdk 1.4.2 08
sun sdk 1.4.2 03
sun sdk 1.4.2 3
sun jre 1.4.2 3
sun jre 1.4.2 5
sun sdk 1.4.2 15
sun jre 1.4.2 6

It was discovered that font creation could leak temporary files If a user were tricked into loading a malicious program or applet, a remote attacker could consume disk space, leading to a denial of service (CVE-2006-2426, CVE-2009-1100) ...

Synopsis Critical: java-160-sun security update Type/Severity Security Advisory: Critical Topic Updated java-160-sun packages that correct several security issues arenow available for Red Hat Enterprise Linux 4 Extras and 5 SupplementaryThis update has been rated as having critical security impact by t ...

Synopsis Important: java-160-openjdk security update Type/Severity Security Advisory: Important Topic Updated java-160-openjdk packages that fix several security issues arenow available for Red Hat Enterprise Linux 5This update has been rated as having important security impact by the RedHat Security R ...

Synopsis Critical: java-160-ibm security update Type/Severity Security Advisory: Critical Topic Updated java-160-ibm packages that fix several security issues are nowavailable for Red Hat Enterprise Linux 4 Extras and 5 SupplementaryThis update has been rated as having critical security impact by the R ...

Synopsis Low: Red Hat Network Satellite Server IBM Java Runtime security update Type/Severity Security Advisory: Low Topic Updated java-160-ibm packages that fix several security issues are nowavailable for Red Hat Network Satellite Server 53This update has been rated as having low security impact by th ...

Synopsis Critical: java-150-sun security update Type/Severity Security Advisory: Critical Topic Updated java-150-sun packages that correct several security issues arenow available for Red Hat Enterprise Linux 4 Extras and 5 SupplementaryThis update has been rated as having critical security impact by t ...

Synopsis Critical: java-150-ibm security update Type/Severity Security Advisory: Critical Topic Updated java-150-ibm packages that fix several security issues are nowavailable for Red Hat Enterprise Linux 4 Extras and 5 SupplementaryThis update has been rated as having critical security impact by the R ...

CVE-2009-1098

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect