Microsoft Java Virtual Machine 3802 Series - Bytecode Verifier Vulnerability

2002-11-21T00:00:00
ID EDB-ID:22027
Type exploitdb
Reporter Last Stage of Delirium
Modified 2002-11-21T00:00:00

Description

Microsoft Java Virtual Machine 3802 Series Bytecode Verifier Vulnerability. CVE-2003-0111. Remote exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/6221/info

The Microsoft Java virtual machine implementation contains a vulnerability that may allow for malicious Java applets to escape the security sandbox.

An applet constructed at the bytecode-level may be able to perform some illegal operations. If these operations are performed, it may be possible to escape the security constraints placed on the applet by the JVM.

Code execution with the privileges of the victim user may be possible.

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/22027-1.tar.gz

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/22027-2.tar.gz

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/22027-3.tar.gz