Vulnerability Description
Unspecified vulnerability in the XML component in IBM Runtimes for Java Technology 5.0.0 before SR10 has unknown impact and attack vectors, related to the "updated version of XML4J 4.4.17."
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Runtimes For Java Technology | <= 5.0.0 |
References
- http://secunia.com/advisories/37210Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ63920
- http://www.securityfocus.com/bid/36894
- http://www.vupen.com/english/advisories/2009/3106Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/54069
- http://secunia.com/advisories/37210Vendor Advisory
- http://www-01.ibm.com/support/docview.wss?uid=swg1IZ63920
- http://www.securityfocus.com/bid/36894
- http://www.vupen.com/english/advisories/2009/3106Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/54069
FAQ
What is CVE-2009-3852?
CVE-2009-3852 is a vulnerability with a CVSS score of 7.5 (HIGH). Unspecified vulnerability in the XML component in IBM Runtimes for Java Technology 5.0.0 before SR10 has unknown impact and attack vectors, related to the "updated version of XML4J 4.4.17."
How severe is CVE-2009-3852?
CVE-2009-3852 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-3852?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Runtimes For Java Technology.