What is the severity of CVE-2009-3864?

CVE-2009-3864 is classified as a medium severity vulnerability due to its potential exploitation by remote attackers.

How do I fix CVE-2009-3864?

To fix CVE-2009-3864, update your Java Runtime Environment to the latest version or apply the most recent security patches.

Can CVE-2009-3864 be exploited remotely?

Yes, CVE-2009-3864 can be exploited remotely by attackers leveraging the vulnerability in non-English versions of Windows.

What symptoms indicate an exploitation of CVE-2009-3864?

Symptoms of an exploitation of CVE-2009-3864 may include unexpected behavior in Java applications or security notifications regarding Java updates.

Vulnerability/
CVE-2009-3864

high

7.5

CWE

NVD-CWE-Other

5/11/2009

7/8/2024

CVE-2009-3864

First published: Thu Nov 05 2009(Updated: )

The Java Update functionality in Java Runtime Environment (JRE) in Sun Java SE in JDK and JRE 5.0 before Update 22 and JDK and JRE 6 before Update 17, when a non-English version of Windows is used, does not retrieve available new JRE versions, which allows remote attackers to leverage vulnerabilities in older releases of this software, aka Bug Id 6869694.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Microsoft Windows
Sun JDK	=1.5.0-update1
Sun JDK	=1.5.0-update10
Sun JDK	=1.5.0-update11
Sun JDK	=1.5.0-update11_b03
Sun JDK	=1.5.0-update12
Sun JDK	=1.5.0-update13
Sun JDK	=1.5.0-update14
Sun JDK	=1.5.0-update15
Sun JDK	=1.5.0-update16
Sun JDK	=1.5.0-update17
Sun JDK	=1.5.0-update18
Sun JDK	=1.5.0-update19
Sun JDK	=1.5.0-update2
Sun JDK	=1.5.0-update20
Sun JDK	=1.5.0-update21
Sun JDK	=1.5.0-update3
Sun JDK	=1.5.0-update4
Sun JDK	=1.5.0-update5
Sun JDK	=1.5.0-update6
Sun JDK	=1.5.0-update7
Sun JDK	=1.5.0-update7_b03
Sun JDK	=1.5.0-update8
Sun JDK	=1.5.0-update9
Sun JDK	=1.6.0-update1
Sun JDK	=1.6.0-update1_b06
Sun JDK	=1.6.0-update10
Sun JDK	=1.6.0-update11
Sun JDK	=1.6.0-update12
Sun JDK	=1.6.0-update13
Sun JDK	=1.6.0-update14
Sun JDK	=1.6.0-update15
Sun JDK	=1.6.0-update16
Sun JDK	=1.6.0-update2
Sun JDK	=1.6.0-update3
Sun JDK	=1.6.0-update4
Sun JDK	=1.6.0-update5
Sun JDK	=1.6.0-update6
Sun JDK	=1.6.0-update7
Sun JDK	=1.6.0-update8
Sun JDK	=1.6.0-update9
Sun JRE	=1.5.0-update1
Sun JRE	=1.5.0-update10
Sun JRE	=1.5.0-update11
Sun JRE	=1.5.0-update12
Sun JRE	=1.5.0-update13
Sun JRE	=1.5.0-update14
Sun JRE	=1.5.0-update15
Sun JRE	=1.5.0-update16
Sun JRE	=1.5.0-update17
Sun JRE	=1.5.0-update18
Sun JRE	=1.5.0-update19
Sun JRE	=1.5.0-update2
Sun JRE	=1.5.0-update20
Sun JRE	=1.5.0-update21
Sun JRE	=1.5.0-update3
Sun JRE	=1.5.0-update4
Sun JRE	=1.5.0-update5
Sun JRE	=1.5.0-update6
Sun JRE	=1.5.0-update7
Sun JRE	=1.5.0-update8
Sun JRE	=1.5.0-update9
Sun JRE	=1.6.0-update_1
Sun JRE	=1.6.0-update_2
Sun JRE	=1.6.0-update_3
Sun JRE	=1.6.0-update10
Sun JRE	=1.6.0-update11
Sun JRE	=1.6.0-update12
Sun JRE	=1.6.0-update13
Sun JRE	=1.6.0-update14
Sun JRE	=1.6.0-update15
Sun JRE	=1.6.0-update16
Sun JRE	=1.6.0-update4
Sun JRE	=1.6.0-update5
Sun JRE	=1.6.0-update6
Sun JRE	=1.6.0-update7
Sun JRE	=1.6.0-update8
Sun JRE	=1.6.0-update9

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-3864?
CVE-2009-3864 is classified as a medium severity vulnerability due to its potential exploitation by remote attackers.
How do I fix CVE-2009-3864?
To fix CVE-2009-3864, update your Java Runtime Environment to the latest version or apply the most recent security patches.
Which versions of Java are affected by CVE-2009-3864?
CVE-2009-3864 affects Java SE in JDK and JRE 5.0 before Update 22 and JDK and JRE 6 before Update 17.
Can CVE-2009-3864 be exploited remotely?
Yes, CVE-2009-3864 can be exploited remotely by attackers leveraging the vulnerability in non-English versions of Windows.
What symptoms indicate an exploitation of CVE-2009-3864?
Symptoms of an exploitation of CVE-2009-3864 may include unexpected behavior in Java applications or security notifications regarding Java updates.

collector/nvd-historical
collector/nvd-index
agent/references
agent/softwarecombine
agent/type
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/author
agent/remedy
agent/severity
agent/weakness
agent/tags
agent/description
agent/first-publish-date
agent/event
agent/source
vendor/microsoft
canonical/microsoft windows
vendor/sun
canonical/sun jdk
version/sun jdk/1.5.0-update1
version/sun jdk/1.5.0-update10
version/sun jdk/1.5.0-update11
version/sun jdk/1.5.0-update11_b03
version/sun jdk/1.5.0-update12
version/sun jdk/1.5.0-update13
version/sun jdk/1.5.0-update14
version/sun jdk/1.5.0-update15
version/sun jdk/1.5.0-update16
version/sun jdk/1.5.0-update17
version/sun jdk/1.5.0-update18
version/sun jdk/1.5.0-update19
version/sun jdk/1.5.0-update2
version/sun jdk/1.5.0-update20
version/sun jdk/1.5.0-update21
version/sun jdk/1.5.0-update3
version/sun jdk/1.5.0-update4
version/sun jdk/1.5.0-update5
version/sun jdk/1.5.0-update6
version/sun jdk/1.5.0-update7
version/sun jdk/1.5.0-update7_b03
version/sun jdk/1.5.0-update8
version/sun jdk/1.5.0-update9
version/sun jdk/1.6.0-update1
version/sun jdk/1.6.0-update1_b06
version/sun jdk/1.6.0-update10
version/sun jdk/1.6.0-update11
version/sun jdk/1.6.0-update12
version/sun jdk/1.6.0-update13
version/sun jdk/1.6.0-update14
version/sun jdk/1.6.0-update15
version/sun jdk/1.6.0-update16
version/sun jdk/1.6.0-update2
version/sun jdk/1.6.0-update3
version/sun jdk/1.6.0-update4
version/sun jdk/1.6.0-update5
version/sun jdk/1.6.0-update6
version/sun jdk/1.6.0-update7
version/sun jdk/1.6.0-update8
version/sun jdk/1.6.0-update9
canonical/sun jre
version/sun jre/1.5.0-update1
version/sun jre/1.5.0-update10
version/sun jre/1.5.0-update11
version/sun jre/1.5.0-update12
version/sun jre/1.5.0-update13
version/sun jre/1.5.0-update14
version/sun jre/1.5.0-update15
version/sun jre/1.5.0-update16
version/sun jre/1.5.0-update17
version/sun jre/1.5.0-update18
version/sun jre/1.5.0-update19
version/sun jre/1.5.0-update2
version/sun jre/1.5.0-update20
version/sun jre/1.5.0-update21
version/sun jre/1.5.0-update3
version/sun jre/1.5.0-update4
version/sun jre/1.5.0-update5
version/sun jre/1.5.0-update6
version/sun jre/1.5.0-update7
version/sun jre/1.5.0-update8
version/sun jre/1.5.0-update9
version/sun jre/1.6.0-update_1
version/sun jre/1.6.0-update_2
version/sun jre/1.6.0-update_3
version/sun jre/1.6.0-update10
version/sun jre/1.6.0-update11
version/sun jre/1.6.0-update12
version/sun jre/1.6.0-update13
version/sun jre/1.6.0-update14
version/sun jre/1.6.0-update15
version/sun jre/1.6.0-update16
version/sun jre/1.6.0-update4
version/sun jre/1.6.0-update5
version/sun jre/1.6.0-update6
version/sun jre/1.6.0-update7
version/sun jre/1.6.0-update8
version/sun jre/1.6.0-update9

CVE-2009-3864

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-3864?

How do I fix CVE-2009-3864?

Which versions of Java are affected by CVE-2009-3864?

Can CVE-2009-3864 be exploited remotely?

What symptoms indicate an exploitation of CVE-2009-3864?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2009-3864?

How do I fix CVE-2009-3864?

Which versions of Java are affected by CVE-2009-3864?

Can CVE-2009-3864 be exploited remotely?

What symptoms indicate an exploitation of CVE-2009-3864?