CVE-2009-1104 in JRE
सारांश
द्वारा VulDB • 04/07/2026
Java Plug-in in Java SE Development Kit (JDK) aur Java Runtime Environment (JRE) ke versions 5.0 Update 17 aur usse pehle; 6 Update 12 aur usse pehle; aur 1.4.2_19 aur usse pehle localhost se load kiye gaye JavaScript ko system par anya ports se connect hone se nahi rokta, jisse user-assisted attackers LiveConnect ke through intended access restrictions ko bypass kar sakte hain, aka CR 6724331. NOTE: is vulnerability ka istemal alag cross-site scripting (XSS) vulnerabilities ke saath remote attack vectors ke liye kiya ja sakta hai.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.