Java Database Connectivity Flaw in Microsoft Virtual Machine
CVE-2002-1260

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Nt; Windows 2000 Terminal Services; Windows Xp; Windows 2000
Vendor: CVE Published:; 23 December 2002

What is CVE-2002-1260?

The JDBC APIs in Microsoft Virtual Machine versions 5.0.3805 and earlier are susceptible to a vulnerability that allows attackers to bypass essential security checks. This issue can be exploited by untrusted Java applets, granting remote access to the database contents. Attackers can leverage this flaw to extract sensitive information, posing significant risks to database integrity and confidentiality.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.ciac.org/ciac/bulletins/n-026.shtml

third-party-advisorygovernment-resourcex_refsource_CIAC

http://www.securityfocus.com/bid/6379

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 23, 2002
Vulnerability Reserved
Nov 4, 2002