Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2009-1107
HistoryMar 25, 2009 - 11:30 p.m.

CVE-2009-1107

2009-03-2523:30:00
[email protected]
web.nvd.nist.gov
5

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

7.1

Confidence

High

EPSS

0.008

Percentile

81.9%

JSON

The Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and earlier, and 5.0 Update 17 and earlier, allows remote attackers to trick a user into trusting a signed applet via unknown vectors that misrepresent the security warning dialog, related to a “Swing JLabel HTML parsing vulnerability,” aka CR 6782871.

Affected configurations

Nvd
Node
sunjava
VendorProductVersionCPE
sunjava*cpe:2.3:a:sun:java:*:*:*:*:*:*:*:*

References

Related

ubuntucve 1
veracode 1
cve 1
cvelist 1
prion 1
nessus 33
openvas 26
redhat 6
suse 3
vmware 6
gentoo 1
ubuntucve
ubuntucve
CVE-2009-1107
2009-03-25 00:00:00
veracode
veracode
Spoofing Attack
2020-04-10 00:37:29
cve
cve
CVE-2009-1107
2009-03-25 23:30:00
cvelist
cvelist
CVE-2009-1107
2009-03-25 23:00:00
prion
prion
Spoofing
2009-03-25 23:30:00
nessus
nessus
Solaris 10 (x86) : 125139-75
2018-03-12 00:00:00
Solaris 10 (x86) : 125139-71
2018-03-12 00:00:00
SuSE9 Security Update : IBM Java 5 JRE and IBM Java 5 SDK (YOU Patch Number 12422)
2009-09-24 00:00:00
openvas
openvas
SLES9: Security update for IBM Java 5 JRE and IBM Java 5 SDK
2009-10-10 00:00:00
SLES9: Security update for IBM Java 5 JRE and IBM Java 5 SDK
2009-10-10 00:00:00
SLES10: Security update for IBM Java 5
2009-10-13 00:00:00
redhat
redhat
(RHSA-2009:0394) Critical: java-1.5.0-sun security update
2009-03-26 00:00:00
(RHSA-2009:1198) Critical: java-1.6.0-ibm security update
2009-08-06 00:00:00
(RHSA-2009:1038) Critical: java-1.5.0-ibm security update
2009-05-18 00:00:00
suse
suse
remote code execution in IBM JDK 5
2009-05-25 13:39:41
remote code execution in java-1_6_0-ibm
2009-07-02 21:55:23
remote code execution in Sun Java 5 and 6
2009-04-03 13:04:22
vmware
vmware
VMware ESX patches for DHCP, Service Console kernel, and JRE resolve multiple security issues
2009-10-16 00:00:00
VMware ESX patches for DHCP, Service Console kernel, and JRE resolve multiple security issues
2009-10-16 00:00:00
VMware vCenter update release addresses multiple security issues in Java JRE
2010-01-29 00:00:00
gentoo
gentoo
Sun JDK/JRE: Multiple vulnerabilities
2009-11-17 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

7.1

Confidence

High

EPSS

0.008

Percentile

81.9%

JSON
Related for NVD:CVE-2009-1107
ubuntucve1veracode1cve1cvelist1prion1nessus33openvas26redhat6suse3vmware6gentoo1