CVE-2009-1103

Unspecified vulnerability in the Java Plug-in in Java SE Development Kit (JDK) and Java Runtime Environment (JRE) 5.0 Update 17 and earlier; 6 Update 12 and earlier; 1.4.2_19 and earlier; and 1.3.1_24 and earlier allows remote attackers to access files and execute arbitrary code via unknown vectors related to deserializing applets, aka CR 6646860.

Affected Software

Name	Vendor	Start Version	End Version
Java	Sun	*	*
Extras for RHEL 4	RedHat	java-1.6.0-sun-1:1.6.0.13-1jpp.1.el4	*
Extras for RHEL 4	RedHat	java-1.5.0-sun-0:1.5.0.18-1jpp.1.el4	*
Extras for RHEL 4	RedHat	java-1.5.0-ibm-1:1.5.0.9-1jpp.5.el4	*
Extras for RHEL 4	RedHat	java-1.6.0-ibm-1:1.6.0.5-1jpp.1.el4	*
Red Hat Network Satellite Server v 5.1	RedHat	java-1.5.0-sun-0:1.5.0.22-1jpp.1.el4	*
Red Hat Network Satellite Server v 5.3	RedHat	java-1.6.0-ibm-1:1.6.0.7-1jpp.3.el4	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.6.0-sun-1:1.6.0.13-1jpp.1.el5	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.5.0-sun-0:1.5.0.18-1jpp.1.el5	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.5.0-ibm-1:1.5.0.9-1jpp.3.el5	*
Supplementary for Red Hat Enterprise Linux 5	RedHat	java-1.6.0-ibm-1:1.6.0.5-1jpp.1.el5	*
Sun-java5	Ubuntu	dapper	*
Sun-java5	Ubuntu	gutsy	*
Sun-java5	Ubuntu	intrepid	*
Sun-java5	Ubuntu	upstream	*
Sun-java6	Ubuntu	gutsy	*
Sun-java6	Ubuntu	hardy	*
Sun-java6	Ubuntu	intrepid	*
Sun-java6	Ubuntu	jaunty	*
Sun-java6	Ubuntu	karmic	*
Sun-java6	Ubuntu	lucid	*
Sun-java6	Ubuntu	upstream	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2009-1103
CWE	https://cwe.mitre.org/data/definitions/.html

Affected Software

References