Lucene search

K
cveMitreCVE-2009-3876
HistoryNov 05, 2009 - 4:30 p.m.

CVE-2009-3876

2009-11-0516:30:00
CWE-399
mitre
web.nvd.nist.gov
76
cve-2009-3876
sun java se
jdk
jre
denial of service
memory consumption
remote attackers
vulnerability
nvd
bug id 6864911
asn.1 der input stream parser
crafted der encoded data

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.2

Confidence

Low

EPSS

0.125

Percentile

95.5%

Unspecified vulnerability in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to cause a denial of service (memory consumption) via crafted DER encoded data, which is not properly decoded by the ASN.1 DER input stream parser, aka Bug Id 6864911.

Affected configurations

Nvd
Node
sunjdkMatch1.5.0update1
OR
sunjdkMatch1.5.0update10
OR
sunjdkMatch1.5.0update11
OR
sunjdkMatch1.5.0update11_b03
OR
sunjdkMatch1.5.0update12
OR
sunjdkMatch1.5.0update13
OR
sunjdkMatch1.5.0update14
OR
sunjdkMatch1.5.0update15
OR
sunjdkMatch1.5.0update16
OR
sunjdkMatch1.5.0update17
OR
sunjdkMatch1.5.0update18
OR
sunjdkMatch1.5.0update19
OR
sunjdkMatch1.5.0update2
OR
sunjdkMatch1.5.0update20
OR
sunjdkMatch1.5.0update21
OR
sunjdkMatch1.5.0update3
OR
sunjdkMatch1.5.0update4
OR
sunjdkMatch1.5.0update5
OR
sunjdkMatch1.5.0update6
OR
sunjdkMatch1.5.0update7
OR
sunjdkMatch1.5.0update7_b03
OR
sunjdkMatch1.5.0update8
OR
sunjdkMatch1.5.0update9
OR
sunjdkMatch1.6.0update1
OR
sunjdkMatch1.6.0update10
OR
sunjdkMatch1.6.0update11
OR
sunjdkMatch1.6.0update12
OR
sunjdkMatch1.6.0update13
OR
sunjdkMatch1.6.0update14
OR
sunjdkMatch1.6.0update15
OR
sunjdkMatch1.6.0update16
OR
sunjdkMatch1.6.0update2
OR
sunjdkMatch1.6.0update3
OR
sunjdkMatch1.6.0update4
OR
sunjdkMatch1.6.0update5
OR
sunjdkMatch1.6.0update6
OR
sunjdkMatch1.6.0update7
OR
sunjdkMatch1.6.0update8
OR
sunjdkMatch1.6.0update9
OR
sunjreMatch1.4.2_1
OR
sunjreMatch1.4.2_2
OR
sunjreMatch1.4.2_02
OR
sunjreMatch1.4.2_03
OR
sunjreMatch1.4.2_3
OR
sunjreMatch1.4.2_4
OR
sunjreMatch1.4.2_04
OR
sunjreMatch1.4.2_05
OR
sunjreMatch1.4.2_5
OR
sunjreMatch1.4.2_06
OR
sunjreMatch1.4.2_6
OR
sunjreMatch1.4.2_7
OR
sunjreMatch1.4.2_07
OR
sunjreMatch1.4.2_8
OR
sunjreMatch1.4.2_08
OR
sunjreMatch1.4.2_09
OR
sunjreMatch1.4.2_9
OR
sunjreMatch1.4.2_10
OR
sunjreMatch1.4.2_11
OR
sunjreMatch1.4.2_12
OR
sunjreMatch1.4.2_13
OR
sunjreMatch1.4.2_14
OR
sunjreMatch1.4.2_15
OR
sunjreMatch1.4.2_16
OR
sunjreMatch1.4.2_17
OR
sunjreMatch1.4.2_18
OR
sunjreMatch1.4.2_19
OR
sunjreMatch1.4.2_20
OR
sunjreMatch1.4.2_21
OR
sunjreMatch1.4.2_22
OR
sunjreMatch1.4.2_23
OR
sunjreMatch1.5.0update1
OR
sunjreMatch1.5.0update10
OR
sunjreMatch1.5.0update11
OR
sunjreMatch1.5.0update12
OR
sunjreMatch1.5.0update13
OR
sunjreMatch1.5.0update14
OR
sunjreMatch1.5.0update15
OR
sunjreMatch1.5.0update16
OR
sunjreMatch1.5.0update17
OR
sunjreMatch1.5.0update18
OR
sunjreMatch1.5.0update19
OR
sunjreMatch1.5.0update2
OR
sunjreMatch1.5.0update20
OR
sunjreMatch1.5.0update21
OR
sunjreMatch1.5.0update3
OR
sunjreMatch1.5.0update4
OR
sunjreMatch1.5.0update5
OR
sunjreMatch1.5.0update6
OR
sunjreMatch1.5.0update7
OR
sunjreMatch1.5.0update8
OR
sunjreMatch1.5.0update9
OR
sunjreMatch1.6.0update_1
OR
sunjreMatch1.6.0update_2
OR
sunjreMatch1.6.0update_3
OR
sunjreMatch1.6.0update10
OR
sunjreMatch1.6.0update11
OR
sunjreMatch1.6.0update12
OR
sunjreMatch1.6.0update13
OR
sunjreMatch1.6.0update14
OR
sunjreMatch1.6.0update15
OR
sunjreMatch1.6.0update16
OR
sunjreMatch1.6.0update4
OR
sunjreMatch1.6.0update5
OR
sunjreMatch1.6.0update6
OR
sunjreMatch1.6.0update7
OR
sunjreMatch1.6.0update8
OR
sunjreMatch1.6.0update9
OR
sunsdkMatch1.4.2_01
OR
sunsdkMatch1.4.2_1
OR
sunsdkMatch1.4.2_2
OR
sunsdkMatch1.4.2_02
OR
sunsdkMatch1.4.2_03
OR
sunsdkMatch1.4.2_3
OR
sunsdkMatch1.4.2_04
OR
sunsdkMatch1.4.2_4
OR
sunsdkMatch1.4.2_5
OR
sunsdkMatch1.4.2_05
OR
sunsdkMatch1.4.2_6
OR
sunsdkMatch1.4.2_06
OR
sunsdkMatch1.4.2_07
OR
sunsdkMatch1.4.2_7
OR
sunsdkMatch1.4.2_8
OR
sunsdkMatch1.4.2_08
OR
sunsdkMatch1.4.2_09
OR
sunsdkMatch1.4.2_9
OR
sunsdkMatch1.4.2_10
OR
sunsdkMatch1.4.2_11
OR
sunsdkMatch1.4.2_12
OR
sunsdkMatch1.4.2_13
OR
sunsdkMatch1.4.2_14
OR
sunsdkMatch1.4.2_15
OR
sunsdkMatch1.4.2_16
OR
sunsdkMatch1.4.2_17
OR
sunsdkMatch1.4.2_18
OR
sunsdkMatch1.4.2_19
OR
sunsdkMatch1.4.2_20
OR
sunsdkMatch1.4.2_21
OR
sunsdkMatch1.4.2_22
OR
sunsdkMatch1.4.2_23
AND
linuxlinux_kernel
OR
microsoftwindows
OR
sunsolaris
Node
sunjreMatch1.3.1_1
OR
sunjreMatch1.3.1_01
OR
sunjreMatch1.3.1_01a
OR
sunjreMatch1.3.1_02
OR
sunjreMatch1.3.1_2
OR
sunjreMatch1.3.1_03
OR
sunjreMatch1.3.1_3
OR
sunjreMatch1.3.1_4
OR
sunjreMatch1.3.1_04
OR
sunjreMatch1.3.1_05
OR
sunjreMatch1.3.1_5
OR
sunjreMatch1.3.1_06
OR
sunjreMatch1.3.1_6
OR
sunjreMatch1.3.1_07
OR
sunjreMatch1.3.1_7
OR
sunjreMatch1.3.1_8
OR
sunjreMatch1.3.1_08
OR
sunjreMatch1.3.1_9
OR
sunjreMatch1.3.1_09
OR
sunjreMatch1.3.1_10
OR
sunjreMatch1.3.1_11
OR
sunjreMatch1.3.1_12
OR
sunjreMatch1.3.1_13
OR
sunjreMatch1.3.1_14
OR
sunjreMatch1.3.1_15
OR
sunjreMatch1.3.1_16
OR
sunjreMatch1.3.1_17
OR
sunjreMatch1.3.1_18
OR
sunjreMatch1.3.1_19
OR
sunjreMatch1.3.1_20
OR
sunjreMatch1.3.1_21
OR
sunjreMatch1.3.1_22
OR
sunjreMatch1.3.1_23
OR
sunjreMatch1.3.1_24
OR
sunjreMatch1.3.1_25
OR
sunsdkMatch1.3.1_01
OR
sunsdkMatch1.3.1_01a
OR
sunsdkMatch1.3.1_2
OR
sunsdkMatch1.3.1_02
OR
sunsdkMatch1.3.1_03
OR
sunsdkMatch1.3.1_3
OR
sunsdkMatch1.3.1_4
OR
sunsdkMatch1.3.1_04
OR
sunsdkMatch1.3.1_5
OR
sunsdkMatch1.3.1_05
OR
sunsdkMatch1.3.1_6
OR
sunsdkMatch1.3.1_06
OR
sunsdkMatch1.3.1_7
OR
sunsdkMatch1.3.1_07
OR
sunsdkMatch1.3.1_8
OR
sunsdkMatch1.3.1_08
OR
sunsdkMatch1.3.1_9
OR
sunsdkMatch1.3.1_09
OR
sunsdkMatch1.3.1_10
OR
sunsdkMatch1.3.1_11
OR
sunsdkMatch1.3.1_12
OR
sunsdkMatch1.3.1_13
OR
sunsdkMatch1.3.1_14
OR
sunsdkMatch1.3.1_15
OR
sunsdkMatch1.3.1_16
OR
sunsdkMatch1.3.1_17
OR
sunsdkMatch1.3.1_18
OR
sunsdkMatch1.3.1_19
OR
sunsdkMatch1.3.1_20
OR
sunsdkMatch1.3.1_21
OR
sunsdkMatch1.3.1_22
OR
sunsdkMatch1.3.1_23
OR
sunsdkMatch1.3.1_24
OR
sunsdkMatch1.3.1_25
AND
microsoftwindows
VendorProductVersionCPE
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update1:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update10:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update11:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update11_b03:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update12:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update13:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update14:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update15:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update16:*:*:*:*:*:*
sunjdk1.5.0cpe:2.3:a:sun:jdk:1.5.0:update17:*:*:*:*:*:*
Rows per page:
1-10 of 2111

References

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.2

Confidence

Low

EPSS

0.125

Percentile

95.5%