Lucene search

[email protected]CVE-2002-2072

HistoryOct 03, 2022 - 4:23 p.m.

CVE-2002-2072

2022-10-0316:23:49

[email protected]

web.nvd.nist.gov

cve-2002-2072

jvm

denial of service

doprivileged method

security vulnerability

java

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

High

0.267 Low

EPSS

Percentile

96.8%

JSON

java.security.AccessController in Sun Java Virtual Machine (JVM) in JRE 1.2.2 and 1.3.1 allows remote attackers to cause a denial of service (JVM crash) via a Java program that calls the doPrivileged method with a null argument.

Affected configurations

NVD

Node

sunjreMatch1.2.2linux_production

sunjreMatch1.3.1linux

CPENameOperatorVersion
sun:jresun jreeq1.2.2
sun:jresun jreeq1.3.1

CPE	Name	Operator	Version
sun:jre	sun jre	eq	1.2.2
sun:jre	sun jre	eq	1.3.1

References

ohhara.sarang.net/security/jvmcrash.txt

securitytracker.com/id?1003418

www.iss.net/security_center/static/8042.php

www.securityfocus.com/bid/3992

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

High

0.267 Low

EPSS

Percentile

96.8%

JSON

Related for CVE-2002-2072

nvd1 cvelist1