CVE-2009-2475

CVE-2009-2475 affects Sun Java SE 5.0 before Update 20 and Java SE 6 before Update 15, and OpenJDK. The issue arises from context-dependent attackers exploiting static variables declared without the final keyword in multiple components (e.g., LayoutQueue, Cursor.predefined, AccessibleResourceBund...

CVE-2009-2721

Technical details for CVE-2009-2721 are not provided in the supplied documents. The entry notes unspecified vulnerabilities in Sun Java SE 5.0 before Update 20. Monitor for updates and refer to official advisories for affected versions and fixes.

CVE-2009-2723

CVE-2009-2723 is described as an unspecified vulnerability in deserialization in the Provider class of Sun Java SE 5.0 prior to Update 20, with unknown impact and attack vectors. The provided documents confirm the affected product (Sun Java SE 5.0) and the module (deserialization via the Provider...

CVE-2009-2724

Technical details for CVE-2009-2724 are not provided in the supplied documents; while references exist, they do not describe affected product/version or impact. Monitor for updates.

CVE-2009-2722

Technical details about CVE-2009-2722 are not disclosed in the provided documents; affected products, impact and remediation are not specified. Monitor for updates.

CVE-2009-2689

CVE-2009-2689 affects OpenJDK and Sun Java Runtime (J2SE 5.0 pre-Update 20 and 6 pre-Update 15). The root cause is that JDK13Services can grant full privileges to certain object types, enabling a context‑dependent attacker using an untrusted applet or application to bypass access restrictions. Th...