CVE-2009-1097

Published: Mar 25, 2009Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Multiple buffer overflows in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 6 Update 12 and earlier allow remote attackers to access files or execute arbitrary code via (1) a crafted PNG image that triggers an integer overflow during memory allocation for display on the splash screen, aka CR 6804996; and (2) a crafted GIF image from which unspecified values are used in calculation of offsets, leading to object-pointer corruption, aka CR 6804997.

Affected (23)

Products: Sun: Jdk, Jre

Sun

2 products

Jdk

Jre

Configuration A

23 vulnerable

Vulnerable Software	Affected Versions
Sun Jdk	Up to 1.6.0
Sun Jdk	Version 1.6.0
Sun Jdk	Version 1.6.0 update1
Sun Jdk	Version 1.6.0 update1_b06
Sun Jdk	Version 1.6.0 update2
Sun Jdk	Version 1.6.0 update_10
Sun Jdk	Version 1.6.0 update_11
Sun Jdk	Version 1.6.0 update_3
Sun Jdk	Version 1.6.0 update_4
Sun Jdk	Version 1.6.0 update_5
Sun Jdk	Version 1.6.0 update_6
Sun Jdk	Version 1.6.0 update_7
Sun Jre	Up to 1.6.0
Sun Jre	Version 1.6.0
Sun Jre	Version 1.6.0 update_10
Sun Jre	Version 1.6.0 update_11
Sun Jre	Version 1.6.0 update_1
Sun Jre	Version 1.6.0 update_2
Sun Jre	Version 1.6.0 update_3
Sun Jre	Version 1.6.0 update_4
Sun Jre	Version 1.6.0 update_5
Sun Jre	Version 1.6.0 update_6
Sun Jre	Version 1.6.0 update_7

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (78)

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01745133

Source: cve@mitre.org

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=779

Source: cve@mitre.org

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=780

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00001.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00003.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00001.html

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=124344236532162&w=2

Source: cve@mitre.org

http://secunia.com/advisories/34489

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/34496

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/34632

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/34675

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/35156

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/35223

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/35255

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/35776

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/36185

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/37386

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/37460

Source: cve@mitre.org

Vendor Advisory

http://security.gentoo.org/glsa/glsa-200911-02.xml

Source: cve@mitre.org

http://sunsolve.sun.com/search/document.do?assetkey=1-26-254571-1

Source: cve@mitre.org

PatchVendor Advisory

http://support.avaya.com/elmodocs2/security/ASA-2009-108.htm

Source: cve@mitre.org

http://www.debian.org/security/2009/dsa-1769

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDVSA-2009:137

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDVSA-2009:162

Source: cve@mitre.org

http://www.oracle.com/technetwork/topics/security/cpujul2009-091332.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2009-0392.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2009-1038.html

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/507985/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/34240

Source: cve@mitre.org

http://www.securitytracker.com/id?1021913

Source: cve@mitre.org

http://www.ubuntu.com/usn/usn-748-1

Source: cve@mitre.org

http://www.vmware.com/security/advisories/VMSA-2009-0016.html

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2009/1426

Source: cve@mitre.org

Vendor Advisory

http://www.vupen.com/english/advisories/2009/3316

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/49475

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11241

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6288

Source: cve@mitre.org

https://rhn.redhat.com/errata/RHSA-2009-0377.html

Source: cve@mitre.org

https://rhn.redhat.com/errata/RHSA-2009-1198.html

Source: cve@mitre.org

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01745133