Security Advisory
CVE-2009-2843
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Java for Mac OS X 10.5 before Update 6 and 10.6 before Update 1 accepts expired certificates for applets, which makes it easier for remote attackers to execute arbitrary code via an applet.