Lucene search
K

4 matches found

Prion
Prion
added 2009/11/09 7:30 p.m.22 views

Design/Logic Flaw

The TimeZone.getTimeZone method in Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, allows remote attackers to determine the existence of local files via vectors related to handling of zoneinfo aka tz files, aka Bug Id 6824265...

5CVSS6.3AI score0.02951EPSS
Exploits5References13Affected Software1
NVD
NVD
added 2009/11/09 7:30 p.m.23 views

CVE-2009-3884

The TimeZone.getTimeZone method in Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, allows remote attackers to determine the existence of local files via vectors related to handling of zoneinfo aka tz files, aka Bug Id 6824265...

5CVSS5.9AI score0.02951EPSS
Exploits5References13
Cvelist
Cvelist
added 2009/11/09 7:0 p.m.27 views

CVE-2009-3884

The TimeZone.getTimeZone method in Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, allows remote attackers to determine the existence of local files via vectors related to handling of zoneinfo aka tz files, aka Bug Id 6824265...

5.9AI score0.02951EPSS
Exploits5References13
CVE
CVE
added 2009/11/09 7:0 p.m.128 views

CVE-2009-3884

CVE-2009-3884 is an information-leak vulnerability in the TimeZone.getTimeZone handling for zoneinfo files used by Sun Java/OpenJDK JRE/OpenJDK (Sun JRE 5.0/6, Update 22/17 or prior, and OpenJDK). The issue allows a remote attacker to probe the local filesystem by observing how tz files are proce...

5CVSS5.8AI score0.02951EPSS
Exploits5References13Affected Software2
Rows per page
Query Builder