CVE-2009-3886

Metadata

CVE-2009-3886
7.5
java.sun.com, security.gentoo.org, bugzilla.redhat.com
2009-11-09
2017-09-21 21:08

Description

The Java Web Start implementation in Sun Java SE 6 before Update 17 does not properly handle the interaction between a signed JAR file and a JNLP (1) application or (2) applet, which has unspecified impact and attack vectors, related to a "regression," aka Bug Id 6870531.

Related Vulnerabilities

platform vulnerability
CVE-2009-3886 openjdk-6
CVE-2009-3886