Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2009-3867Improper Restriction of Operations within the Bounds of a Memory Buffer in JDK

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-121Stack-based Buffer Overflow10 documents7 sources
Severity
9.3CRITICALNVD
EPSS
89.1%
top 0.47%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
3
SUN JDKSUN JRESUN SDK
Timeline
PublishedNov 5
Latest updateMay 2

Description

Stack-based buffer overflow in the HsbParser.getSoundBank function in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote attackers to execute arbitrary code via a long file: URL in an argument, aka Bug Id 6854303.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

NVDsun/jdk1.5.0, 1.6.0+1
NVDsun/jre68 versions+67
NVDsun/sdk65 versions+64

Patches

Patch: sunsolve.sun.comPatch: www.vupen.comPatch: zerodayinitiative.com

🔴Vulnerability Details

3
GHSA
GHSA-h62j-9mvm-r9mf: Stack-based buffer overflow in the HsbParser2022-05-02
CVEList
CVE-2009-3867: Stack-based buffer overflow in the HsbParser2009-11-05
VulnCheck
sun jdk Improper Restriction of Operations within the Bounds of a Memory Buffer2009

💥Exploits & PoCs

3
Exploit-DB
Sun Java JRE - getSoundbank 'file://' URI Buffer Overflow (Metasploit)2010-09-20
Exploit-DB
Sun Java SE November 2009 - Multiple Vulnerabilities (1)2009-10-29
Exploit-DB
Sun Java SE November 2009 - Multiple Vulnerabilities (2)2009-10-29

📋Vendor Advisories

1
Red Hat
java-1.6.0-sun: Stack-based buffer overflow via a long file: URL argument (6854303)2009-11-03

💬Community

2
Bugzilla
CVE-2009-3867 java-1.5.0-sun, java-1.6.0-sun: Stack-based buffer overflow via a long file: URL argument (6854303)2009-11-05
Bugzilla
CVE-2009-3867 JRE HsbParser.getSoundBank Stack Buffer Overflow Vulnerability (6854303)2009-11-04
CVE-2009-3867 — SUN JDK vulnerability | cvebase