Java Sandbox Escape Vulnerability in Microsoft Virtual Machine
CVE-2000-0327

Currently unrated

Key Information:

Vendor: Microsoft
Status: Virtual Machine
Vendor: CVE Published:; 21 October 1999

Summary

The Microsoft Virtual Machine contains a vulnerability that permits remote attackers to bypass security mechanisms in the Java sandbox. By exploiting this security flaw through an applet designed with an illegal cast operation, malicious actors can execute arbitrary commands on the host system. This vulnerability highlights the critical need for users to ensure their virtual machine is updated and secure.

References

http://marc.info/?l=bugtraq&m=93993545118416&w=2

mailing-listx_refsource_BUGTRAQ

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
May 11, 2000
Vulnerability published
Oct 21, 1999