9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
High
0.949 High
EPSS
Percentile
99.3%
Dan Kaminsky discovered that SSL certificates signed with MD2 could be
spoofed given enough time. As a result, an attacker could potentially
create a malicious trusted certificate to impersonate another site. This
update handles this issue by completely disabling MD2 for certificate
validation in OpenJDK. (CVE-2009-2409)
It was discovered that ICC profiles could be identified with
“…” pathnames. If a user were tricked into running a specially
crafted applet, a remote attacker could gain information about a local
system. (CVE-2009-3728)
Peter Vreugdenhil discovered multiple flaws in the processing of graphics
in the AWT library. If a user were tricked into running a specially
crafted applet, a remote attacker could crash the application or run
arbitrary code with user privileges. (CVE-2009-3869, CVE-2009-3871)
Multiple flaws were discovered in JPEG and BMP image handling. If a user
were tricked into loading a specially crafted image, a remote attacker
could crash the application or run arbitrary code with user privileges.
(CVE-2009-3873, CVE-2009-3874, CVE-2009-3885)
Coda Hale discovered that HMAC-based signatures were not correctly
validated. Remote attackers could bypass certain forms of authentication,
granting unexpected access. (CVE-2009-3875)
Multiple flaws were discovered in ASN.1 parsing. A remote attacker
could send a specially crafted HTTP stream that would exhaust system
memory and lead to a denial of service. (CVE-2009-3876, CVE-2009-3877)
It was discovered that the graphics configuration subsystem did
not correctly handle arrays. If a user were tricked into running
a specially crafted applet, a remote attacker could exploit this
to crash the application or execute arbitrary code with user
privileges. (CVE-2009-3879)
It was discovered that loggers and Swing did not correctly handle
certain sensitive objects. If a user were tricked into running a
specially crafted applet, private information could be leaked to a remote
attacker, leading to a loss of privacy. (CVE-2009-3880, CVE-2009-3882,
CVE-2009-3883)
It was discovered that the ClassLoader did not correctly handle certain
options. If a user were tricked into running a specially crafted
applet, a remote attacker could execute arbitrary code with user
privileges. (CVE-2009-3881)
It was discovered that time zone file loading could be used to determine
the existence of files on the local system. If a user were tricked into
running a specially crafted applet, private information could be leaked
to a remote attacker, leading to a loss of privacy. (CVE-2009-3884)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 9.10 | noarch | icedtea6-plugin | < 6b16-1.6.1-3ubuntu1 | UNKNOWN |
Ubuntu | 9.10 | noarch | icedtea-6-jre-cacao | < 6b16-1.6.1-3ubuntu1 | UNKNOWN |
Ubuntu | 9.10 | noarch | openjdk-6-dbg | < 6b16-1.6.1-3ubuntu1 | UNKNOWN |
Ubuntu | 9.10 | noarch | openjdk-6-demo | < 6b16-1.6.1-3ubuntu1 | UNKNOWN |
Ubuntu | 9.10 | noarch | openjdk-6-jdk | < 6b16-1.6.1-3ubuntu1 | UNKNOWN |
Ubuntu | 9.10 | noarch | openjdk-6-jre | < 6b16-1.6.1-3ubuntu1 | UNKNOWN |
Ubuntu | 9.10 | noarch | openjdk-6-jre-headless | < 6b16-1.6.1-3ubuntu1 | UNKNOWN |
Ubuntu | 9.10 | noarch | openjdk-6-jre-zero | < 6b16-1.6.1-3ubuntu1 | UNKNOWN |
Ubuntu | 9.04 | noarch | icedtea6-plugin | < 6b14-1.4.1-0ubuntu12 | UNKNOWN |
Ubuntu | 9.04 | noarch | icedtea-6-jre-cacao | < 6b14-1.4.1-0ubuntu12 | UNKNOWN |
ubuntu.com/security/CVE-2009-2409
ubuntu.com/security/CVE-2009-3728
ubuntu.com/security/CVE-2009-3869
ubuntu.com/security/CVE-2009-3871
ubuntu.com/security/CVE-2009-3873
ubuntu.com/security/CVE-2009-3874
ubuntu.com/security/CVE-2009-3875
ubuntu.com/security/CVE-2009-3876
ubuntu.com/security/CVE-2009-3877
ubuntu.com/security/CVE-2009-3879
ubuntu.com/security/CVE-2009-3880
ubuntu.com/security/CVE-2009-3881
ubuntu.com/security/CVE-2009-3882
ubuntu.com/security/CVE-2009-3883
ubuntu.com/security/CVE-2009-3884
ubuntu.com/security/CVE-2009-3885