Apple Java security update for CVE-2009-1100

Back to Search

Apple Java security update for CVE-2009-1100

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

03/25/2009

Created

07/25/2018

Added

01/26/2012

Modified

02/13/2015

Description

Multiple unspecified vulnerabilities in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allow remote attackers to cause a denial of service (disk consumption) via vectors related to temporary font files and (1) "limits on Font creation," aka CR 6522586, and (2) another unspecified vector, aka CR 6632886.

Solution(s)

apple-java-upgrade-1_4_2_21
apple-java-upgrade-1_5_0_21
apple-java-upgrade-1_6_0_13

Related Vulnerabilities

34240
CVE - 2009-1100
OVAL6224
RHSA-2009:0392
RHSA-2009:0394
RHSA-2009:1038
RHSA-2009:1198
SUSE-SA:2009:016
SUSE-SA:2009:029
SUSE-SA:2009:036
http://support.apple.com/kb/HT3632
http://support.apple.com/kb/HT3633

References

apple-java-upgrade-1_4_2_21
apple-java-upgrade-1_5_0_21
apple-java-upgrade-1_6_0_13

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;

Rapid7 Vulnerability & Exploit Database

Apple Java security update for CVE-2009-1100