CVE-2009-3880

Priority
Low
Description
The Abstract Window Toolkit (AWT) in Java Runtime Environment (JRE) in Sun
Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, does not
properly restrict the objects that may be sent to loggers, which allows
attackers to obtain sensitive information via vectors related to the
implementation of Component, KeyboardFocusManager, and
DefaultKeyboardFocusManager, aka Bug Id 6664512.
References
Package
Upstream:released (6b17)
Package
Upstream:released (1.5.0-22)
Package
Upstream:released (6.17)
More Information

Valid XHTML 1.0 Strict

Updated: 2015-07-29 20:37:01 UTC (commit 9756)