CVE-2002-1289 in Java Virtual Machineinfo

Zusammenfassung

von MITRE

The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to read restricted process memory, cause a denial of service (crash), and possibly execute arbitrary code via the getNativeServices function, which creates an instance of the com.ms.awt.peer.INativeServices (INativeServices) class, whose methods do not verify the memory addresses that are passed as parameters.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Veröffentlichung

29.11.2002

Moderieren

akzeptiert

Eintrag

VDB-19175

CPE

bereit

CWE

CWE-119 (bestätigt)

CVSS

7.3 (VulDB)

EPSS

0.16314

KEV

nein

Aktivitäten

very low

Sektor

Finance, Pharma, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-1289
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-1289
CVE Details	https://www.cvedetails.com/cve/CVE-2002-1289/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!