cve/2009/CVE-2009-2719.md

CVE-2009-2719

Description

The Java Web Start implementation in Sun Java SE 6 before Update 15 allows context-dependent attackers to cause a denial of service (NullPointerException) via a crafted .jnlp file, as demonstrated by the jnlp_file/appletDesc/index.html#misc test in the Technology Compatibility Kit (TCK) for the Java Network Launching Protocol (JNLP).

POC

Reference

• http://www.vmware.com/security/advisories/VMSA-2009-0016.html

Github

No PoCs found on GitHub currently.