fkie_nvd - fkie_cve-2009-1006

fkie_cve-2009-1006

Vulnerability from fkie_nvd

Published

2009-04-15 10:30

Modified

2025-04-09 00:30

Severity ?

Summary

Unspecified vulnerability in the JRockit component in BEA Product Suite R27.6.2 and earlier, with SDK/JRE 1.4.2, JRE/JDK 5, and JRE/JDK 6, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

References

URL	Tags
secalert_us@oracle.com	http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html
secalert_us@oracle.com	http://www.securityfocus.com/bid/34461
secalert_us@oracle.com	http://www.securitytracker.com/id?1022059
secalert_us@oracle.com	http://www.us-cert.gov/cas/techalerts/TA09-105A.html	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/34461
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1022059
af854a3a-2127-422b-91ae-364da2661108	http://www.us-cert.gov/cas/techalerts/TA09-105A.html	US Government Resource

Impacted products

Vendor	Product	Version
oracle	jrockit	*
oracle	jrockit	r26.0
oracle	jrockit	r26.1
oracle	jrockit	r26.2
oracle	jrockit	r26.3
oracle	jrockit	r26.4
oracle	jrockit	r27.1
oracle	jrockit	r27.2
oracle	jrockit	r27.3
oracle	jrockit	r27.3.1
oracle	jrockit	r27.4
oracle	jrockit	r27.5
oracle	jrockit	r27.6
oracle	jrockit	r27.6.0
oracle	jrockit	r27.6.1
sun	jdk	5.0
sun	jdk	6
sun	jre	1.4.2
sun	jre	5.0
sun	jre	6
sun	sdk	1.4.2

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9608B08F-67D3-45CA-9F1E-22BB6C02E6D0",
              "versionEndIncluding": "r27.6.2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r26.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "E83DA137-A2FC-4E0F-B297-7D6FEBEF5FB2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r26.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "5EDC15FE-3C16-433D-9D99-2B82727BD97F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r26.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "529D146C-4975-4A15-8818-59BE62202966",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r26.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "CB064B5E-06B4-48BD-9492-7BBBEDAA9978",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r26.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "4CC2BE68-DC4E-4B0B-85FE-27877657827D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r27.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "4873B9FF-0BA4-45AE-834A-C23AE80A2B48",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r27.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "39274558-2ECB-43CE-BAEF-DBD3AAC1BD05",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r27.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "72DA7B82-EC3B-4458-B040-6F9D1AE23DDE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r27.3.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "267F16DF-D868-4DD9-8670-01AC3CBCE716",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r27.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "164B5E91-F21A-4C99-A685-7332A85AF25B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r27.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "2DD7274B-EA02-49DE-9FA5-40DA26498191",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r27.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "57BCE344-59AF-404B-9BC2-095562754184",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r27.6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2D2BE6F9-6DAC-47B3-A9B6-10056E1E48F9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:oracle:jrockit:r27.6.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "44280B48-5ECB-47B2-AE9E-0C6189B01A27",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:sun:jdk:5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D9D9B6F3-906D-4CCC-9655-99A1496B1475",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:a:sun:jdk:6:*:*:*:*:*:*:*",
              "matchCriteriaId": "1264A513-5AE3-4F0E-8387-1F75EBAEA241",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:a:sun:jre:1.4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "63978872-E797-4F13-B0F9-98CB67D0962A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:a:sun:jre:5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "3241D774-D0F4-4529-A779-2F4F11813D18",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:a:sun:jre:6:*:*:*:*:*:*:*",
              "matchCriteriaId": "2C502FE9-F61F-4316-AA33-B09FA8BA54DF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:a:sun:sdk:1.4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "002CA86D-3090-4C7A-947A-21CB5D1ADD98",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in the JRockit component in BEA Product Suite R27.6.2 and earlier, with SDK/JRE 1.4.2, JRE/JDK 5, and JRE/JDK 6, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad no especificada en el componente JRockit de BEA Product Suite R27.6.2 y anteriores, con SDK/JRE v1.4.2, JRE/JDK v5 y JRE/JDK v6; permite a atacantes remotos comprometer la confidencialidad, integridad y disponibilidad a trav\u00e9s de vectores desconocidos."
    }
  ],
  "id": "CVE-2009-1006",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2009-04-15T10:30:00.920",
  "references": [
    {
      "source": "secalert_us@oracle.com",
      "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://www.securityfocus.com/bid/34461"
    },
    {
      "source": "secalert_us@oracle.com",
      "url": "http://www.securitytracker.com/id?1022059"
    },
    {
      "source": "secalert_us@oracle.com",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA09-105A.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.oracle.com/technetwork/topics/security/cpuapr2009-099563.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/34461"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1022059"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA09-105A.html"
    }
  ],
  "sourceIdentifier": "secalert_us@oracle.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2009-1006 (GCVE-0-2009-1006)

Vulnerability from cvelistv5

Published

2009-04-15 10:00