JRE Untrusted Application Privilege Escalation Vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 9 | (AV:N/AC:M/Au:N/C:C/I:C/A:C) | November 05, 2009 | December 18, 2009 | July 16, 2012 |
Available Exploits 
Description
The Java Web Start Installer in Sun Java SE in JDK and JRE 6 before Update 17 does not properly use security model permissions when removing installer extensions. This can potentially allow remote attackers to execute arbitrary code by modifying a certain JNLP file to have a URL field that points to an unintended trusted application.
Free Nexpose Download
Discover, prioritize, and remediate security risks today!
References
- APPLE: http://docs.info.apple.com/article.html?artnum=61798
- APPLE: http://docs.info.apple.com/article.html?artnum=61798
- BID-36881
- CVE-2009-3866
- OVAL: http://oval.mitre.org/oval/definitions/data/OVAL6635.html
- REDHAT: http://rhn.redhat.com/errata/RHSA-2009-1694.html
- SECUNIA: http://secunia.com/advisories/37231/
- SECUNIA: http://secunia.com/advisories/37239/
- SECUNIA: http://secunia.com/advisories/37386/
- SECUNIA: http://secunia.com/advisories/37581/
- SECUNIA: http://secunia.com/advisories/37841/
- SUSE: http://www.novell.com/linux/security/advisories.html
- URL: http://sunsolve.sun.com/search/document.do?assetkey=1-66-269870-1
Solution
Oracle JRE >= 1.6.0.0 and < 1.6.0.17
Upgrade to Oracle Java version 1.6.0.17
Upgrade your copy of the Java Runtime Environment to 1.6.0.17, which can be downloaded from here.
Related Vulnerabilities
- Apple Java security update for CVE-2009-3865
- Apple Java security update for CVE-2009-3866
- Apple Java security update for CVE-2009-3867
- Apple Java security update for CVE-2009-3868
- Apple Java security update for CVE-2009-3869
- Apple Java security update for CVE-2009-3871
- Apple Java security update for CVE-2009-3872
- Apple Java security update for CVE-2009-3873
- Apple Java security update for CVE-2009-3874
- Apple Java security update for CVE-2009-3875
- Apple Java security update for CVE-2009-3877
- JRE Audio and Image File Buffer and Integer Overflow Vulnerabilities
- JRE Deployment Toolkit Vulnerability
- JRE DER Decoding and HTTP Header Denial of Service Vulnerability
- JRE DER Decoding Denial of Service
- JRE HMAC Digest Flaw
- JRE Java Web Start JNLP Vulnerability
- JRE Multiple Overflows
- JRE Non-English Update Flaw
- JRE Timing Attack
- CESA-2009:1551: java-1.4.2-ibm security update
- CESA-2009:1584: java-1.6.0-openjdk security update
- CESA-2010:0408: java-1.4.2-ibm security update
- ELSA-2009-1584 Important: Enterprise Linux 5 java-1.6.0-openjdk security update
- RHSA-2009:1551: java-1.4.2-ibm security update
- RHSA-2009:1560: java-1.6.0-sun security update
- RHSA-2009:1571: java-1.5.0-sun security update
- RHSA-2009:1584: java-1.6.0-openjdk security update
- RHSA-2009:1643: java-1.4.2-ibm security update
- RHSA-2009:1647: java-1.5.0-ibm security update
- RHSA-2009:1662: Red Hat Network Satellite Server Sun Java Runtime security update
- RHSA-2009:1694: java-1.6.0-ibm security update
- RHSA-2010:0043: Red Hat Network Satellite Server IBM Java Runtime security update
- RHSA-2010:0408: java-1.4.2-ibm security update
- SUSE Linux Security Advisory: SUSE-SA:2009:058
- USN-859-1: OpenJDK vulnerabilities
- VMSA-2010-0002.4: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3864)
- VMSA-2010-0002.4: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3865)
- VMSA-2010-0002.4: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3866)
- VMSA-2010-0002.4: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3867)
- VMSA-2010-0002.4: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3868)
- VMSA-2010-0002.4: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3869)
- VMSA-2010-0002.4: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3871)
- VMSA-2010-0002.4: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3872)
- VMSA-2010-0002.4: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3873)
- VMSA-2010-0002.4: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3874)
- VMSA-2010-0002.4: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3875)
- VMSA-2010-0002.4: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3876)
- VMSA-2010-0002.4: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3877)
- VMSA-2010-0005: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3864)
- VMSA-2010-0005: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3865)
- VMSA-2010-0005: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3866)
- VMSA-2010-0005: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3867)
- VMSA-2010-0005: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3868)
- VMSA-2010-0005: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3869)
- VMSA-2010-0005: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3871)
- VMSA-2010-0005: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3872)
- VMSA-2010-0005: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3873)
- VMSA-2010-0005: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3874)
- VMSA-2010-0005: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3875)
- VMSA-2010-0005: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3876)
- VMSA-2010-0005: WebAccess Context Data Cross-site Scripting Vulnerability (CVE-2009-3877)