Two Vulnerabilities in Microsoft Virtual Machine Affect Internet Explorer
CVE-2002-1258

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Nt; Windows 2000 Terminal Services; Windows Xp; Windows 2000
Vendor: CVE Published:; 23 December 2002

What is CVE-2002-1258?

Microsoft Virtual Machine, used in Internet Explorer and other applications, has two vulnerabilities that enable remote attackers to exploit a parsing error. This flaw allows unauthorized file reading through a Java applet with a spoofed location in the CODEBASE parameter of the APPLET tag, posing significant security risks.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 23, 2002
Vulnerability Reserved
Nov 4, 2002