CVE-2009-3871

NONECVSS 0.0

0.0

Heap-based buffer overflow in the setBytePixels function in the Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary code via crafted arguments, aka Bug Id 6872358.

🔗 References (54)

cve@mitrehttp://java.sun.com/javase/6/webnotes/6u17.html
cve@mitrehttp://lists.apple.com/archives/security-announce/2009/Dec/msg00000.html
cve@mitrehttp://lists.apple.com/archives/security-announce/2009/Dec/msg00001.html
cve@mitrehttp://lists.opensuse.org/opensuse-security-announce/2009-11/msg00010.html
cve@mitrehttp://marc.info/?l=bugtraq&m=126566824131534&w=2
cve@mitrehttp://marc.info/?l=bugtraq&m=131593453929393&w=2
cve@mitrehttp://marc.info/?l=bugtraq&m=134254866602253&w=2
cve@mitrehttp://secunia.com/advisories/37231
cve@mitrehttp://secunia.com/advisories/37239
cve@mitrehttp://secunia.com/advisories/37386
cve@mitrehttp://secunia.com/advisories/37581
cve@mitrehttp://secunia.com/advisories/37841
cve@mitrehttp://security.gentoo.org/glsa/glsa-200911-02.xml
cve@mitrehttp://securitytracker.com/id?1023132
cve@mitrehttp://sunsolve.sun.com/search/document.do?assetkey=1-66-270474-1

Is Your Infrastructure Affected by CVE-2009-3871?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-3871

📅 Published

🔄 Last Modified

🔗 References (54)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-3871?