Published: 10/08/2009 Updated: 10/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

The Java Web Start implementation in Sun Java SE 6 before Update 15 allows context-dependent malicious users to cause a denial of service (NullPointerException) via a crafted .jnlp file, as demonstrated by the jnlp_file/appletDesc/index.html#misc test in the Technology Compatibility Kit (TCK) for the Java Network Launching Protocol (JNLP).

Vulnerable Product	Search on Vulmon	Subscribe to Product
sun java se

Synopsis Critical: java-160-sun security update Type/Severity Security Advisory: Critical Topic Updated java-160-sun packages that correct several security issues arenow available for Red Hat Enterprise Linux 4 Extras and 5 SupplementaryThis update has been rated as having critical security impact by t ...

CWE-119 http://java.sun.com/javase/6/webnotes/6u15.html http://security.gentoo.org/glsa/glsa-200911-02.xml http://secunia.com/advisories/37460 http://secunia.com/advisories/37386 http://www.vupen.com/english/advisories/2009/3316 http://www.vmware.com/security/advisories/VMSA-2009-0016.html http://www.securityfocus.com/archive/1/507985/100/0/threaded https://access.redhat.com/errata/RHSA-2009:1200 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-2719

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect