Lucene search

[email protected]CVE-2009-3879

HistoryNov 09, 2009 - 7:30 p.m.

CVE-2009-3879

2009-11-0919:30:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

sun java se

cve-2009-3879

vulnerability

x11

win32graphicsdevice

openjdk

bug id 6822057

array cloning

6.2 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.2%

JSON

Multiple unspecified vulnerabilities in the (1) X11 and (2) Win32GraphicsDevice subsystems in Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, have unknown impact and attack vectors, related to failure to clone arrays that are returned by the getConfigurations function, aka Bug Id 6822057.

CPENameOperatorVersion
sun:jresun jreeq1.6.0
sun:jresun jreeq1.5.0
sun:openjdksun openjdkeq*

CPE	Name	Operator	Version
sun:jre	sun jre	eq	1.6.0
sun:jre	sun jre	eq	1.5.0
sun:openjdk	sun openjdk	eq	*

References

java.sun.com/j2se/1.5.0/ReleaseNotes.html

java.sun.com/javase/6/webnotes/6u17.html

secunia.com/advisories/37386

security.gentoo.org/glsa/glsa-200911-02.xml

www.mandriva.com/security/advisories?name=MDVSA-2010:084

bugzilla.redhat.com/show_bug.cgi?id=530297

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7545

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9568

6.2 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.2%

JSON

Related for CVE-2009-3879

veracode1 prion1 cvelist1 ubuntucve1 openvas26 fedora3 redhat4 nessus20 centos1 oraclelinux1 securityvulns1 ubuntu1 vmware2 gentoo1