The Java Web Start implementation in Sun Java SE 6 before Update 17 does not properly handle the interaction between a signed JAR file and a JNLP (1) application or (2) applet, which has unspecified impact and attack vectors, related to a "regression," aka Bug Id 6870531.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2009-11-09T19:00:00

Updated: 2024-08-07T06:45:51.022Z

Reserved: 2009-11-05T00:00:00

Link: CVE-2009-3886

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2009-11-09T19:30:00.627

Modified: 2017-09-19T01:29:50.173

Link: CVE-2009-3886

cve-icon Redhat

Severity : Important

Publid Date: 2009-11-03T00:00:00Z

Links: CVE-2009-3886 - Bugzilla