Vulnerability & Exploit Database

Back to search

HP-UX: CVE-2009-2672: Running Java, Remote Increase in Privilege, Denial of Service and Other Vulnerabilities

Severity CVSS Published Added Modified
8 (AV:N/AC:L/Au:N/C:P/I:P/A:P) August 04, 2009 August 10, 2017 September 11, 2017

Description

The proxy mechanism implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to browser cookies by untrusted (1) applets and (2) Java Web Start applications, which allows remote attackers to hijack web sessions via unspecified vectors.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

hpux-update-jdk14-jdk14-com

Related Vulnerabilities