← Back

CVE-2009-3881

nvd nist
Published: Nov 9, 2009Modified: Apr 23, 2026

JSON object

Loading...
7.5
Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Exploitability: 10.0 / Impact: 6.4
Source: NVD

Description

Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, does not prevent the existence of children of a resurrected ClassLoader, which allows remote attackers to gain privileges via unspecified vectors, related to an "information leak vulnerability," aka Bug Id 6636650.

Affected (38)

Products: Sun: Jre, Openjdk
Sun
2 products
Jre
Openjdk
Configuration A
38 vulnerable
Vulnerable SoftwareAffected Versions
Sun
Jre
Up to 1.6.0
Jre
Up to 1.5.0
Jre
Version 1.5.0 update10
Jre
Version 1.5.0 update_11
Jre
Version 1.5.0 update_12
Jre
Version 1.5.0 update_13
Jre
Version 1.5.0 update_14
Jre
Version 1.5.0 update_15
Jre
Version 1.5.0 update_16
Jre
Version 1.5.0 update_17
Jre
Version 1.5.0 update_18
Jre
Version 1.5.0 update_19
Jre
Version 1.5.0 update_1
Jre
Version 1.5.0 update_20
Jre
Version 1.5.0 update_2
Jre
Version 1.5.0 update_3
Jre
Version 1.5.0 update_4
Jre
Version 1.5.0 update_5
Jre
Version 1.5.0 update_6
Jre
Version 1.5.0 update_7
Jre
Version 1.5.0 update_8
Jre
Version 1.5.0 update_9
Jre
Version 1.6.0 update_10
Jre
Version 1.6.0 update_11
Jre
Version 1.6.0 update_12
Jre
Version 1.6.0 update_13
Jre
Version 1.6.0 update_14
Jre
Version 1.6.0 update_15
Jre
Version 1.6.0 update_1
Jre
Version 1.6.0 update_2
Jre
Version 1.6.0 update_3
Jre
Version 1.6.0 update_4
Jre
Version 1.6.0 update_5
Jre
Version 1.6.0 update_6
Jre
Version 1.6.0 update_7
Jre
Version 1.6.0 update_8
Jre
Version 1.6.0 update_9
Openjdk
All versions

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (16)

Source: secalert@redhat.com
Vendor Advisory
Source: secalert@redhat.com
Vendor Advisory
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: secalert@redhat.com
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.