CVE-2009-3865
- EPSS 9.4%
- Veröffentlicht 05.11.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:30
The launch method in the Deployment Toolkit plugin in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 6 before Update 17 allows remote attackers to execute arbitrary commands via a crafted web page, aka Bug Id 6869752.
CVE-2009-3866
- EPSS 6.18%
- Veröffentlicht 05.11.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:30
The Java Web Start Installer in Sun Java SE in JDK and JRE 6 before Update 17 does not properly use security model permissions when removing installer extensions, which allows remote attackers to execute arbitrary code by modifying a certain JNLP fil...
CVE-2009-3867
- EPSS 73.38%
- Veröffentlicht 05.11.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:30
Stack-based buffer overflow in the HsbParser.getSoundBank function in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to...
CVE-2009-3868
- EPSS 4.26%
- Veröffentlicht 05.11.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:30
Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 does not properly parse color profiles, which allows remote attackers to gain privileges via a c...
CVE-2009-3869
- EPSS 65.46%
- Veröffentlicht 05.11.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:31
Stack-based buffer overflow in the setDiffICM function in the Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and S...
CVE-2009-3871
- EPSS 6.84%
- Veröffentlicht 05.11.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:31
Heap-based buffer overflow in the setBytePixels function in the Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and...
CVE-2009-3872
- EPSS 4.26%
- Veröffentlicht 05.11.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:31
Unspecified vulnerability in the JPEG JFIF Decoder in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to gain privileges...
CVE-2009-3873
- EPSS 4.21%
- Veröffentlicht 05.11.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:31
The JPEG Image Writer in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to gain privileges via a crafted image file, related to a "quantization problem," ...
CVE-2009-3874
- EPSS 9.53%
- Veröffentlicht 05.11.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:32
Integer overflow in the JPEGImageReader implementation in the ImageI/O component in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary co...
- EPSS 3.11%
- Veröffentlicht 05.11.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:12:32
The MessageDigest.isEqual function in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers ...