CVE - CVE-2009-2676

CVE-ID
CVE-2009-2676	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Unspecified vulnerability in JNLPAppletlauncher in Sun Java SE, and SE for Business, in JDK and JRE 6 Update 14 and earlier and JDK and JRE 5.0 Update 19 and earlier; and Java SE for Business in SDK and JRE 1.4.2_21 and earlier; allows remote attackers to create or modify arbitrary files via vectors involving an untrusted Java applet that accesses an old version of JNLPAppletLauncher.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BUGTRAQ:20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components URL:http://www.securityfocus.com/archive/1/507985/100/0/threaded CONFIRM:http://sunsolve.sun.com/search/document.do?assetkey=1-21-125136-16-1 CONFIRM:http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html CONFIRM:http://www.vmware.com/security/advisories/VMSA-2009-0016.html GENTOO:GLSA-200911-02 URL:http://security.gentoo.org/glsa/glsa-200911-02.xml HP:HPSBUX02476 URL:http://marc.info/?l=bugtraq&m=125787273209737&w=2 HP:SSRT090250 URL:http://marc.info/?l=bugtraq&m=125787273209737&w=2 REDHAT:RHSA-2009:1199 URL:https://rhn.redhat.com/errata/RHSA-2009-1199.html REDHAT:RHSA-2009:1200 URL:https://rhn.redhat.com/errata/RHSA-2009-1200.html SUNALERT:263490 URL:http://sunsolve.sun.com/search/document.do?assetkey=1-66-263490-1 SUSE:SUSE-SA:2009:043 URL:http://lists.opensuse.org/opensuse-security-announce/2009-08/msg00003.html SUSE:SUSE-SA:2009:053 URL:http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00002.html CERT:TA09-294A URL:http://www.us-cert.gov/cas/techalerts/TA09-294A.html BID:35946 URL:http://www.securityfocus.com/bid/35946 OSVDB:56789 URL:http://osvdb.org/56789 OVAL:oval:org.mitre.oval:def:8453 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8453 SECTRACK:1022657 URL:http://www.securitytracker.com/id?1022657 SECUNIA:36176 URL:http://secunia.com/advisories/36176 SECUNIA:36199 URL:http://secunia.com/advisories/36199 SECUNIA:36248 URL:http://secunia.com/advisories/36248 SECUNIA:37300 URL:http://secunia.com/advisories/37300 SECUNIA:37386 URL:http://secunia.com/advisories/37386 SECUNIA:37460 URL:http://secunia.com/advisories/37460 VUPEN:ADV-2009-3316 URL:http://www.vupen.com/english/advisories/2009/3316
Assigning CNA
N/A
Date Entry Created
20090805	Disclaimer: The entry creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20090805)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org