CVE-2009-2723
Unspecified vulnerability in deserialization in the Provider class in Sun Java SE 5.0 before Update 20 has unknown impact and attack vectors, aka BugId 6444262.
Date published : 2009-08-10
http://lists.apple.com/archives/security-announce/2009/Sep/msg00000.html
http://www.securityfocus.com/archive/1/507985/100/0/threaded