Back to search
CVE-2009-2689
Published: Aug 10, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
JDK13Services.getProviders in Sun Java SE 5.0 before Update 20 and 6 before Update 15, and OpenJDK, grants full privileges to instances of unspecified object types, which allows context-dependent attackers to bypass intended access restrictions via an untrusted (1) applet or (2) application.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
RHSA-2009:1199
vendor-advisory
x_refsource_REDHAT
36162
third-party-advisory
x_refsource_SECUNIA
ADV-2009-2543
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:9603
vdb-entry
signature
x_refsource_OVAL
GLSA-200911-02
vendor-advisory
x_refsource_GENTOO
36199
third-party-advisory
x_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-21-125139-16-1
x_refsource_CONFIRM
MDVSA-2009:209
vendor-advisory
x_refsource_MANDRIVA
FEDORA-2009-8329
vendor-advisory
x_refsource_FEDORA
http://java.sun.com/javase/6/webnotes/6u15.html
x_refsource_CONFIRM
36180
third-party-advisory
x_refsource_SECUNIA
http://sunsolve.sun.com/search/document.do?assetkey=1-21-118667-22-1
x_refsource_CONFIRM
FEDORA-2009-8337
vendor-advisory
x_refsource_FEDORA
https://bugzilla.redhat.com/show_bug.cgi?id=513222
x_refsource_CONFIRM
SUSE-SR:2009:016
vendor-advisory
x_refsource_SUSE
http://java.sun.com/j2se/1.5.0/ReleaseNotes.html
x_refsource_CONFIRM
APPLE-SA-2009-09-03-1
vendor-advisory
x_refsource_APPLE
RHSA-2009:1201
vendor-advisory
x_refsource_REDHAT
37386
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now