Published: 25/03/2009 Updated: 10/10/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12, 11, and 10 allows user-assisted remote malicious users to cause a trusted applet to run in an older JRE version, which can be used to exploit vulnerabilities in that older version, aka CR 6706490.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sun java

Synopsis Critical: java-160-ibm security update Type/Severity Security Advisory: Critical Topic Updated java-160-ibm packages that fix several security issues are nowavailable for Red Hat Enterprise Linux 4 Extras and 5 SupplementaryThis update has been rated as having critical security impact by the R ...

Synopsis Critical: java-160-sun security update Type/Severity Security Advisory: Critical Topic Updated java-160-sun packages that correct several security issues arenow available for Red Hat Enterprise Linux 4 Extras and 5 SupplementaryThis update has been rated as having critical security impact by t ...

Synopsis Critical: java-150-ibm security update Type/Severity Security Advisory: Critical Topic Updated java-150-ibm packages that fix several security issues are nowavailable for Red Hat Enterprise Linux 4 Extras and 5 SupplementaryThis update has been rated as having critical security impact by the R ...

Synopsis Low: Red Hat Network Satellite Server IBM Java Runtime security update Type/Severity Security Advisory: Low Topic Updated java-160-ibm packages that fix several security issues are nowavailable for Red Hat Network Satellite Server 53This update has been rated as having low security impact by th ...

NVD-CWE-Other http://sunsolve.sun.com/search/document.do?assetkey=1-66-254611-1 http://support.avaya.com/elmodocs2/security/ASA-2009-108.htm http://www.redhat.com/support/errata/RHSA-2009-0392.html http://www.securitytracker.com/id?1021920 http://www.securityfocus.com/bid/34240 http://secunia.com/advisories/34496 http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00001.html http://www.redhat.com/support/errata/RHSA-2009-1038.html http://secunia.com/advisories/35156 http://secunia.com/advisories/35255 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01745133 http://www.vupen.com/english/advisories/2009/1426 http://marc.info/?l=bugtraq&m=124344236532162&w=2 http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00001.html https://rhn.redhat.com/errata/RHSA-2009-1198.html http://secunia.com/advisories/36185 http://security.gentoo.org/glsa/glsa-200911-02.xml http://www.vupen.com/english/advisories/2009/3316 http://secunia.com/advisories/37386 http://www.vmware.com/security/advisories/VMSA-2009-0016.html http://secunia.com/advisories/37460 http://support.apple.com/kb/HT4171 http://www.vupen.com/english/advisories/2010/1191 http://secunia.com/advisories/39819 http://lists.apple.com/archives/security-announce/2010//May/msg00001.html https://exchange.xforce.ibmcloud.com/vulnerabilities/49458 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6642 http://www.securityfocus.com/archive/1/507985/100/0/threaded https://nvd.nist.gov https://access.redhat.com/errata/RHSA-2009:1198

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-1105

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect