Oval Definition:oval:org.opensuse.security:def:20092672
Revision Date:2022-05-20Version:1
Title:CVE-2009-2672
Description:

The proxy mechanism implementation in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15, and JDK and JRE 5.0 before Update 20, does not prevent access to browser cookies by untrusted (1) applets and (2) Java Web Start applications, which allows remote attackers to hijack web sessions via unspecified vectors.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2009-2672
Mitre CVE-2009-2672
SUSE CVE-2009-2672
SUSE-SA:2009:043
SUSE-SA:2009:043
SUSE-SA:2009:053
SUSE-SA:2009:053
SUSE-SR:2009:016
SUSE-SR:2009:016
Platform(s):Open Enterprise Server
openSUSE 10.3
openSUSE 11.0
openSUSE 11.1
SUSE Linux Enterprise Desktop 11 GA
SUSE Linux Enterprise SDK 11 GA
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 GA
SUSE Linux Enterprise Server for SAP Applications 11
Product(s):
Definition Synopsis
  • Release Information
  • suse110 is installed
  • java-1_6_0-openjdk-demo less than 1.6_b16-0.1
  • OR java-1_6_0-openjdk-devel less than 1.6_b16-0.1
  • OR java-1_6_0-openjdk-javadoc less than 1.6_b16-0.1
  • OR java-1_6_0-openjdk-plugin less than 1.6_b16-0.1
  • OR java-1_6_0-openjdk-src less than 1.6_b16-0.1
  • OR java-1_6_0-openjdk less than 1.6_b16-0.1
  • OR
  • suse111 is installed
  • java-1_6_0-openjdk-demo less than 1.6_b16-0.1.3
  • OR java-1_6_0-openjdk-devel less than 1.6_b16-0.1.3
  • OR java-1_6_0-openjdk-javadoc less than 1.6_b16-0.1.3
  • OR java-1_6_0-openjdk-plugin less than 1.6_b16-0.1.3
  • OR java-1_6_0-openjdk-src less than 1.6_b16-0.1.3
  • OR java-1_6_0-openjdk less than 1.6_b16-0.1.3
  • OR Package Information
  • sle11-sdk is installed
  • java-1_6_0-ibm-devel less than 1.6.0_sr6-1.1.1
  • OR java-1_6_0-ibm-fonts less than 1.6.0_sr6-1.1.1
  • OR java-1_6_0-ibm less than 1.6.0_sr6-1.1.1
  • OR
  • sles11 is installed
  • java-1_6_0-ibm-alsa less than 1.6.0_sr6-1.1.1
  • OR java-1_6_0-ibm-fonts less than 1.6.0_sr6-1.1.1
  • OR java-1_6_0-ibm-jdbc less than 1.6.0_sr6-1.1.1
  • OR java-1_6_0-ibm-plugin less than 1.6.0_sr6-1.1.1
  • OR java-1_6_0-ibm less than 1.6.0_sr6-1.1.1
  • OR Package Information
  • sles9-oes is installed
  • AND
  • IBMJava5-JRE less than 1.5.0-0.70
  • OR IBMJava5-SDK less than 1.5.0-0.70
  • OR Package Information
  • suse110 is installed
  • java-1_6_0-sun-alsa less than 1.6.0.u15-0.1
  • OR java-1_6_0-sun-demo less than 1.6.0.u15-0.1
  • OR java-1_6_0-sun-devel less than 1.6.0.u15-0.1
  • OR java-1_6_0-sun-jdbc less than 1.6.0.u15-0.1
  • OR java-1_6_0-sun-plugin less than 1.6.0.u15-0.1
  • OR java-1_6_0-sun-src less than 1.6.0.u15-0.1
  • OR java-1_6_0-sun less than 1.6.0.u15-0.1
  • OR
  • suse111 is installed
  • java-1_6_0-sun-alsa less than 1.6.0.u15-0.1.1
  • OR java-1_6_0-sun-devel less than 1.6.0.u15-0.1.1
  • OR java-1_6_0-sun-jdbc less than 1.6.0.u15-0.1.1
  • OR java-1_6_0-sun-plugin less than 1.6.0.u15-0.1.1
  • OR java-1_6_0-sun-src less than 1.6.0.u15-0.1.1
  • OR java-1_6_0-sun less than 1.6.0.u15-0.1.1
  • OR Package Information
  • sled11 is installed
  • AND
  • java-1_6_0-sun-alsa less than 1.6.0.u15-0.1.1
  • OR java-1_6_0-sun-demo less than 1.6.0.u15-0.1.1
  • OR java-1_6_0-sun-jdbc less than 1.6.0.u15-0.1.1
  • OR java-1_6_0-sun-plugin less than 1.6.0.u15-0.1.1
  • OR java-1_6_0-sun-src less than 1.6.0.u15-0.1.1
  • OR java-1_6_0-sun less than 1.6.0.u15-0.1.1
  • OR Package Information
  • suse110 is installed
  • java-1_5_0-sun-alsa less than 1.5.0_update20-0.1
  • OR java-1_5_0-sun-demo less than 1.5.0_update20-0.1
  • OR java-1_5_0-sun-devel less than 1.5.0_update20-0.1
  • OR java-1_5_0-sun-jdbc less than 1.5.0_update20-0.1
  • OR java-1_5_0-sun-plugin less than 1.5.0_update20-0.1
  • OR java-1_5_0-sun-src less than 1.5.0_update20-0.1
  • OR java-1_5_0-sun less than 1.5.0_update20-0.1
  • OR
  • suse111 is installed
  • java-1_5_0-sun-alsa less than 1.5.0_update20-0.1.1
  • OR java-1_5_0-sun-devel less than 1.5.0_update20-0.1.1
  • OR java-1_5_0-sun-jdbc less than 1.5.0_update20-0.1.1
  • OR java-1_5_0-sun-plugin less than 1.5.0_update20-0.1.1
  • OR java-1_5_0-sun-src less than 1.5.0_update20-0.1.1
  • OR java-1_5_0-sun less than 1.5.0_update20-0.1.1
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 is installed
  • AND Package Information
  • java-1_6_0-ibm-1.6.0_sr6-1.1 is installed
  • OR java-1_6_0-ibm-alsa-1.6.0-124.6 is installed
  • OR java-1_6_0-ibm-alsa-x86-1.6.0-124.7 is installed
  • OR java-1_6_0-ibm-fonts-1.6.0_sr6-1.1 is installed
  • OR java-1_6_0-ibm-jdbc-1.6.0_sr6-1.1 is installed
  • OR java-1_6_0-ibm-plugin-1.6.0-124.6 is installed
  • OR java-1_6_0-ibm-x86-1.6.0-124.7 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 11 is installed
  • AND Package Information
  • java-1_6_0-ibm-1.6.0_sr6-1.1.1 is installed
  • OR java-1_6_0-ibm-alsa-1.6.0_sr6-1.1.1 is installed
  • OR java-1_6_0-ibm-alsa-x86-1.6.0-124.7.1 is installed
  • OR java-1_6_0-ibm-fonts-1.6.0_sr6-1.1.1 is installed
  • OR java-1_6_0-ibm-jdbc-1.6.0_sr6-1.1.1 is installed
  • OR java-1_6_0-ibm-plugin-1.6.0_sr6-1.1.1 is installed
  • OR java-1_6_0-ibm-x86-1.6.0-124.7.1 is installed
    • BACK