0.011 Low
EPSS
Percentile
84.1%
The launch method in the Deployment Toolkit plugin in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 6 before Update 17 allows remote attackers to execute arbitrary commands via a crafted web page, aka Bug Id 6869752.
java.sun.com/javase/6/webnotes/6u17.html
sunsolve.sun.com/search/document.do?assetkey=1-66-269869-1
launchpad.net/bugs/cve/CVE-2009-3865
nvd.nist.gov/vuln/detail/CVE-2009-3865
security-tracker.debian.org/tracker/CVE-2009-3865
www.cve.org/CVERecord?id=CVE-2009-3865