Vulnerabilities

CVE-2009-2476

by Fred · 10/08/2009

The Java Management Extensions (JMX) implementation in Sun Java SE 6 before Update 15, and OpenJDK, does not properly enforce OpenType checks, which allows context-dependent attackers to bypass intended access restrictions by leveraging finalizer resurrection to obtain a reference to a privileged object.

Date published : 2009-08-10

http://lists.apple.com/archives/security-announce/2009/Sep/msg00000.html

http://java.sun.com/javase/6/webnotes/6u15.html

Similar

Tags: Cybersecurity Alert