Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 19/03/2002 Updated: 12/10/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Java Runtime Environment (JRE) Bytecode Verifier allows remote malicious users to escape the Java sandbox and execute commands via an applet containing an illegal cast operation, as seen in (1) Microsoft VM build 3802 and previous versions as used in Internet Explorer 4.x and 5.x, (2) Netscape 6.2.1 and previous versions, and possibly other implementations that use vulnerable versions of SDK or JDK, aka a variant of the "Virtual Machine Verifier" vulnerability.

Vulnerable Product	Search on Vulmon	Subscribe to Product
hp java jre-jdk 1.1.8
hp java jre-jdk 1.2.2
sun jre 1.2.2
sun jre 1.3.0
sun jre 1.1.8
hp java jre-jdk 1.3
microsoft virtual machine 3802
sun jre 1.3.1
sun sdk 1.3.1_01
sun sdk 1.3.1_01a
sun sdk 1.3_05
sun jdk 1.1.8
sun sdk 1.2.2_010
sun sdk 1.2.2_10

NVD-CWE-Other http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/218 http://www.securityfocus.com/bid/4313 http://www.iss.net/security_center/static/8480.php https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-013 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-0076

Vulnerability Summary

References

Vulmon Search

About

Products

Connect