CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-1293

The Microsoft Java implementation, as used in Internet Explorer, provides a public load0() method for the CabCracker class (com.ms.vm.loader.CabCracker), which allows remote attackers to bypass the security checks that are performed by the load() method.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.025

EPSS Ranking 84.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://marc.info/?l=bugtraq&m=103682630823080&w=2
http://marc.info/?l=ntbugtraq&m=103684360031565&w=2
http://www.iss.net/security_center/static/10586.php
http://www.securityfocus.com/bid/6137
http://marc.info/?l=bugtraq&m=103682630823080&w=2
http://marc.info/?l=ntbugtraq&m=103684360031565&w=2
http://www.iss.net/security_center/static/10586.php
http://www.securityfocus.com/bid/6137

Products affected by CVE-2002-1293

Microsoft » Java Virtual Machine » Version: 1.1

cpe:2.3:a:microsoft:java_virtual_machine:1.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-1293

Products

Pricing

Contact Us