Vulnerability & Exploit Database

Back to search

Apple Java security update for CVE-2009-3884

Severity CVSS Published Added Modified
5 (AV:N/AC:L/Au:N/C:P/I:N/A:N) November 08, 2009 January 25, 2012 February 12, 2015

Description

The TimeZone.getTimeZone method in Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, allows remote attackers to determine the existence of local files via vectors related to handling of zoneinfo (aka tz) files, aka Bug Id 6824265.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

apple-java-upgrade-1_4_2_22

Related Vulnerabilities