Bypass Security Checks in Microsoft Internet Explorer Java Implementation
CVE-2002-1293

Currently unrated

Key Information:

Vendor: Microsoft
Status: Java Virtual Machine
Vendor: CVE Published:; 29 November 2002

Summary

Microsoft's Java implementation utilized in Internet Explorer contains a vulnerability where the public load0() method in the CabCracker class permits remote attackers to evade the security validations typically enforced by the load() method. This flaw poses a risk of unauthorized access, allowing malicious users to exploit this weakness for harmful actions.

References

http://marc.info/?l=ntbugtraq&m=103684360031565&w=2

mailing-listx_refsource_NTBUGTRAQ

http://www.iss.net/security_center/static/10586.php

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/6137

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Nov 29, 2002
Vulnerability Reserved
Nov 13, 2002