CVE-2009-2722 - Multiple unspecified vulnerabilities in the Provider class in Sun Java SE 5.0 before Update 20 have

CVE-2009-2722

Summary

Multiple unspecified vulnerabilities in the Provider class in Sun Java SE 5.0 before Update 20 have unknown impact and attack vectors, aka BugId 6429594. NOTE: this issue exists because of an incorrect fix for BugId 6406003.

References

Vulnerable Configurations

cpe:2.3:a:sun:java_se:*:19:*:*:*:*:*:*
cpe:2.3:a:sun:java_se:*:19:*:*:*:*:*:*

CVSS

Base:	10.0 (as of 10-10-2018 - 19:42)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:C/A:C

redhat via4

rpms

java-1.5.0-sun-0:1.5.0.20-1jpp.1.el4
java-1.5.0-sun-0:1.5.0.20-1jpp.1.el5
java-1.5.0-sun-demo-0:1.5.0.20-1jpp.1.el4
java-1.5.0-sun-demo-0:1.5.0.20-1jpp.1.el5
java-1.5.0-sun-devel-0:1.5.0.20-1jpp.1.el4
java-1.5.0-sun-devel-0:1.5.0.20-1jpp.1.el5
java-1.5.0-sun-jdbc-0:1.5.0.20-1jpp.1.el4
java-1.5.0-sun-jdbc-0:1.5.0.20-1jpp.1.el5
java-1.5.0-sun-plugin-0:1.5.0.20-1jpp.1.el4
java-1.5.0-sun-plugin-0:1.5.0.20-1jpp.1.el5
java-1.5.0-sun-src-0:1.5.0.20-1jpp.1.el4
java-1.5.0-sun-src-0:1.5.0.20-1jpp.1.el5

refmap via4

apple	APPLE-SA-2009-09-03-1
bugtraq	20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components
confirm	http://java.sun.com/j2se/1.5.0/ReleaseNotes.html http://sunsolve.sun.com/search/document.do?assetkey=1-21-118667-22-1 http://www.vmware.com/security/advisories/VMSA-2009-0016.html
gentoo	GLSA-200911-02
secunia	37386 37460
vupen	ADV-2009-2543 ADV-2009-3316

Last major update

10-10-2018 - 19:42

Published

10-08-2009 - 20:30

Last modified

10-10-2018 - 19:42