PRIOn knowledge basePRION:CVE-2009-3885Design/Logic Flaw
6.4 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.011 Low
EPSS
Percentile
84.2%
Sun Java SE 5.0 before Update 22 and 6 before Update 17 on Windows allows remote attackers to cause a denial of service via a BMP file containing a link to a UNC share pathname for an International Color Consortium (ICC) profile file, probably a related issue to CVE-2007-2789, aka Bug Id 6632445.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jre | le | 1.5.0 | |
| jre | le | 1.6.0 | |
| jre | eq | 1.5.0 update-18 | |
| jre | eq | 1.5.0 update-20 | |
| jre | eq | 1.5.0 update-9 | |
| jre | eq | 1.5.0 update-2 | |
| jre | eq | 1.5.0 update-8 | |
| jre | eq | 1.5.0 update-1 | |
| jre | eq | 1.5.0 update-17 | |
| jre | eq | 1.5.0 update-4 |
Related
6.4 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.011 Low
EPSS
Percentile
84.2%