SUN » JRE » 1.5.0 update4 : Security Vulnerabilities, CVEs, (Directory traversal)

cpe:2.3:a:sun:jre:1.5.0:update4:*:*:*:*:*:*

CVE-2009-3728

Directory traversal vulnerability in the ICC_Profile.getInstance method in Java Runtime Environment (JRE) in Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, allows remote attackers to determine the existence of local International Color Consortium (ICC) profile files via a .. (dot dot) in a pathname, aka Bug Id 6631533.
Max CVSS
5.0
EPSS Score
0.70%
Published
2009-11-09
Updated
2018-10-30
1 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close