Rapid7 Vulnerability & Exploit Database

Gentoo Linux: CVE-2009-2671: Sun JDK/JRE: Multiple vulnerabilities

Free InsightVM Trial No credit card necessary

Watch Demo See how it all works

Back to Search

Gentoo Linux: CVE-2009-2671: Sun JDK/JRE: Multiple vulnerabilities

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:N)

Published

08/05/2009

Created

07/25/2018

Added

10/30/2017

Modified

10/30/2017

Description

The SOCKS proxy implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, allows remote attackers to discover the username of the account that invoked an untrusted (1) applet or (2) Java Web Start application via unspecified vectors.

Solution(s)

gentoo-linux-upgrade-app-emulation-emul-linux-x86-java
gentoo-linux-upgrade-dev-java-blackdown-jdk
gentoo-linux-upgrade-dev-java-blackdown-jre
gentoo-linux-upgrade-dev-java-sun-jdk
gentoo-linux-upgrade-dev-java-sun-jre-bin

References

https://attackerkb.com/topics/cve-2009-2671
APPLE-SA-2009-09-03-1
35943
TA09-294A
CVE - 2009-2671
200911-02
OVAL11115
OVAL8259
RHSA-2009:1199
RHSA-2009:1200
RHSA-2009:1201
SUSE-SA:2009:043
SUSE-SA:2009:053
52336

Advanced vulnerability management analytics and reporting.

Key Features

Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;