VYPR
Unrated severityNVD Advisory· Published Aug 5, 2009· Updated Jun 16, 2026

CVE-2009-2674

CVE-2009-2674

Description

Integer overflow in javaws.exe in Sun Java Web Start in Sun Java Runtime Environment (JRE) in JDK and JRE 6 before Update 15 allows context-dependent attackers to execute arbitrary code via a crafted JPEG image that is not properly handled during display to a splash screen, which triggers a heap-based buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

29
  • Sun Corporation/Jdk14 versions
    cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*+ 13 more
    • cpe:2.3:a:sun:jdk:1.6.0:update2:*:*:*:*:*:*
    • cpe:2.3:a:sun:jdk:6:update_1:*:*:*:*:*:*
    • cpe:2.3:a:sun:jdk:6:update_10:*:*:*:*:*:*
    • cpe:2.3:a:sun:jdk:6:update_11:*:*:*:*:*:*
    • cpe:2.3:a:sun:jdk:6:update_12:*:*:*:*:*:*
    • cpe:2.3:a:sun:jdk:6:update_13:*:*:*:*:*:*
    • cpe:2.3:a:sun:jdk:6:update_2:*:*:*:*:*:*
    • cpe:2.3:a:sun:jdk:6:update_3:*:*:*:*:*:*
    • cpe:2.3:a:sun:jdk:6:update_4:*:*:*:*:*:*
    • cpe:2.3:a:sun:jdk:6:update_5:*:*:*:*:*:*
    • cpe:2.3:a:sun:jdk:6:update_6:*:*:*:*:*:*
    • cpe:2.3:a:sun:jdk:6:update_7:*:*:*:*:*:*
    • cpe:2.3:a:sun:jdk:6:update_8:*:*:*:*:*:*
    • cpe:2.3:a:sun:jdk:6:update_9:*:*:*:*:*:*
  • Sun Corporation/Jre13 versions
    cpe:2.3:a:sun:jre:6:update_1:*:*:*:*:*:*+ 12 more
    • cpe:2.3:a:sun:jre:6:update_1:*:*:*:*:*:*
    • cpe:2.3:a:sun:jre:6:update_10:*:*:*:*:*:*
    • cpe:2.3:a:sun:jre:6:update_11:*:*:*:*:*:*
    • cpe:2.3:a:sun:jre:6:update_12:*:*:*:*:*:*
    • cpe:2.3:a:sun:jre:6:update_13:*:*:*:*:*:*
    • cpe:2.3:a:sun:jre:6:update_2:*:*:*:*:*:*
    • cpe:2.3:a:sun:jre:6:update_3:*:*:*:*:*:*
    • cpe:2.3:a:sun:jre:6:update_4:*:*:*:*:*:*
    • cpe:2.3:a:sun:jre:6:update_5:*:*:*:*:*:*
    • cpe:2.3:a:sun:jre:6:update_6:*:*:*:*:*:*
    • cpe:2.3:a:sun:jre:6:update_7:*:*:*:*:*:*
    • cpe:2.3:a:sun:jre:6:update_8:*:*:*:*:*:*
    • cpe:2.3:a:sun:jre:6:update_9:*:*:*:*:*:*
  • Range: < 6 Update 15
  • Range: < 6 Update 15

Patches

Vulnerability mechanics

References

26

News mentions

0

No linked articles in our index yet.