Lucene search

[email protected]CVE-2000-0327

HistoryOct 21, 1999 - 4:00 a.m.

CVE-2000-0327

1999-10-2104:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

microsoft vm

java sandbox

remote attack

commands execution

virtual machine verifier

cve-2000-0327

8 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

69.2%

JSON

Microsoft Virtual Machine (VM) allows remote attackers to escape the Java sandbox and execute commands via an applet containing an illegal cast operation, aka the “Virtual Machine Verifier” vulnerability.

CPENameOperatorVersion
microsoft:virtual_machinemicrosoft virtual machineeq2000
microsoft:virtual_machinemicrosoft virtual machineeq3000

CPE	Name	Operator	Version
microsoft:virtual_machine	microsoft virtual machine	eq	2000
microsoft:virtual_machine	microsoft virtual machine	eq	3000

References

marc.info/?l=bugtraq&m=93993545118416&w=2

docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-045

8 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

69.2%

JSON