Stack-based Buffer Overflow in Microsoft Java Implementation in Internet Explorer
CVE-2002-1287

Currently unrated

Key Information:

Vendor: Microsoft
Status: Java Virtual Machine
Vendor: CVE Published:; 29 November 2002

Summary

A stack-based buffer overflow in the Microsoft Java implementation used in Internet Explorer allows remote attackers to exploit this vulnerability by sending a specially crafted long class name through Class.forName or ClassLoader.loadClass. This could lead to unexpected behavior and potential denial of service, making it critical for users to ensure their systems are up-to-date and secure against this type of attack.

References

http://www.iss.net/security_center/static/10580.php

vdb-entryx_refsource_XF

http://marc.info/?l=ntbugtraq&m=103684360031565&w=2

mailing-listx_refsource_NTBUGTRAQ

http://www.securityfocus.com/bid/6134

vdb-entryx_refsource_BID

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Nov 29, 2002
Vulnerability Reserved
Nov 13, 2002