CVE-2002-1295

Currently unrated

Key Information:

Vendor: Microsoft
Status: Java Virtual Machine
Vendor: CVE Published:; 29 November 2002

Summary

The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to cause a denial of service (crash) and possibly conduct other unauthorized activities via applet tags in HTML that bypass Java class restrictions (such as private constructors) by providing the class name in the code parameter, aka "Incomplete Java Object Instantiation Vulnerability."

References

http://www.securityfocus.com/bid/6136

vdb-entryx_refsource_BID

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://marc.info/?l=ntbugtraq&m=103684360031565&w=2

mailing-listx_refsource_NTBUGTRAQ

Timeline

Vulnerability published
Nov 29, 2002
Vulnerability Reserved
Nov 13, 2002

Collectors

NVD DatabaseMitre Database