Lucene search
K

105 matches found

securityvulns
securityvulns
added 2004/02/11 12:0 a.m.47 views

Microsoft Virtual PC Services Insecure Temporary File Creation

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Advisory Name: Virtual PC Services Insecure Temporary File Creation Release Date: 02/10/2004 Application: Connectix Virtual PC 6.0.x Microsoft Virtual PC 6.1 Platform: Mac OS X Severity: Local privilege...

4.6CVSS0.5AI score0.01531EPSS
Exploits0
securityvulns
securityvulns
added 2004/02/11 12:0 a.m.87 views

Microsoft Security Bulletin MS04-005

Microsoft Security Bulletin MS04-005 Vulnerability in Virtual PC for Mac could lead to privilege elevation 835150 Issued: February 10, 2004 Version: 1.0 Summary Who should read this document: Customers who are using Microsoft® Virtual PC for Mac Impact of vulnerability: Elevation of Privilege...

4.6CVSS0.4AI score0.01531EPSS
Exploits0
Symantec
Symantec
added 2004/02/10 12:0 a.m.19 views

Microsoft Virtual PC For Mac Temporary File Privilege Escalation Vulnerability

Description Microsoft has reported an issue in Virtual PC for Mac that may permit a local attacker to gain elevated privileges on a system hosting the software. This is due to insecure handling of temporary files by the setuid root VirtualPCServices binary, potentially permitting a malicious loca...

0.5AI score
Exploits0References1Affected Software1
NVD
NVD
added 2003/05/05 4:0 a.m.20 views

CVE-2003-0111

The ByteCode Verifier component of Microsoft Virtual Machine VM build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Flaw in Microsoft VM Could Enable System Compromise....

7.5CVSS7.6AI score0.41212EPSS
Exploits0References4
Cvelist
Cvelist
added 2003/04/15 4:0 a.m.26 views

CVE-2003-0111

The ByteCode Verifier component of Microsoft Virtual Machine VM build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Flaw in Microsoft VM Could Enable System Compromise....

7.6AI score0.41212EPSS
Exploits0References4
securityvulns
securityvulns
added 2003/04/11 12:0 a.m.28 views

Flaw in Microsoft VM Could Enable System Compromise

TITLE : Microsoft Virtual Machine Bytecode Verifier Vulnerability CRITICAL : Highly critical IMPACT : System access OPERATING SYSTEM: Microsoft Windows 95 Microsoft Windows 98 and 98SE Microsoft Windows Millennium Microsoft Windows NT 4.0, beginning with Service Pack 1 Microsoft Windows 2000...

0.8AI score
Exploits0
CERT
CERT
added 2003/01/21 12:0 a.m.32 views

Microsoft Virtual Machine incorrectly parses the domain portion of URLs containing a colon

Overview Some versions of the Microsoft virtual machine Microsoft VM contain a flaw that could allow untrusted Java applets from an attacker's site to be run instead of the trusted applet from the intended site. Description The Microsoft virtual machine Microsoft VM enables Java programs to run o...

7.5CVSS6AI score0.20503EPSS
Exploits0References2
CERT
CERT
added 2003/01/21 12:0 a.m.70 views

Microsoft Virtual Machine allows applets write access to the Standard Security Manager

Overview A flaw in the Microsoft virtual machine Microsoft VM could allow malicious Java applets to block other, legitimate applets from running, resulting in a denial-of-service condition. Description The Microsoft virtual machine Microsoft VM enables Java programs to run on Windows platforms. T...

7.5CVSS5.9AI score0.22445EPSS
Exploits0References2
CERT
CERT
added 2003/01/21 12:0 a.m.50 views

Microsoft Virtual Machine allows untrusted applets to access the user.dir system property

Overview Some versions of the Microsoft virtual machine Microsoft VM contain a flaw that could leak information about the user's system. This flaw could allow malicious Java applets to get information they would normally be denied access to. Description The Microsoft virtual machine Microsoft VM...

5CVSS5.9AI score0.13858EPSS
Exploits0References2
NVD
NVD
added 2002/12/23 5:0 a.m.22 views

CVE-2002-1257

Microsoft Virtual Machine VM up to and including build 5.0.3805 allows remote attackers to execute arbitrary code by including a Java applet that invokes COM Component Object Model objects in a web site or an HTML mail...

10CVSS7.4AI score0.15303EPSS
Exploits0References2
NVD
NVD
added 2002/12/23 5:0 a.m.25 views

CVE-2002-1325

Microsoft Virtual Machine VM build 5.0.3805 and earlier allows remote attackers to determine a local user's username via a Java applet that accesses the user.dir system property, aka "User.dir Exposure Vulnerability."...

5CVSS6.4AI score0.13858EPSS
Exploits0References2
NVD
NVD
added 2002/12/23 5:0 a.m.20 views

CVE-2002-1260

The Java Database Connectivity JDBC APIs in Microsoft Virtual Machine VM 5.0.3805 and earlier allow remote attackers to bypass security checks and access database contents via an untrusted Java applet...

7.5CVSS6.7AI score0.15444EPSS
Exploits0References4
NVD
NVD
added 2002/12/23 5:0 a.m.22 views

CVE-2002-1258

Two vulnerabilities in Microsoft Virtual Machine VM up to and including build 5.0.3805, as used in Internet Explorer and other applications, allow remote attackers to read files via a Java applet with a spoofed location in the CODEBASE parameter in the APPLET tag, possibly due to a parsing error...

5CVSS6.7AI score0.15304EPSS
Exploits0References2
Cvelist
Cvelist
added 2002/12/17 5:0 a.m.27 views

CVE-2002-1258

Two vulnerabilities in Microsoft Virtual Machine VM up to and including build 5.0.3805, as used in Internet Explorer and other applications, allow remote attackers to read files via a Java applet with a spoofed location in the CODEBASE parameter in the APPLET tag, possibly due to a parsing error...

6.7AI score0.15304EPSS
Exploits0References2
CVE
CVE
added 2002/12/17 5:0 a.m.69 views

CVE-2002-1258

CVE-2002-1258 affects Microsoft Virtual Machine (VM) up to build 5.0.3805, as used in Internet Explorer and other applications. The vulnerability allows remote attackers to read files via a Java applet whose CODEBASE parameter in the APPLET tag is spoofed, likely due to a parsing error. Documents...

5CVSS6.8AI score0.15304EPSS
Exploits0References2Affected Software8
securityvulns
securityvulns
added 2002/12/14 12:0 a.m.42 views

Multiple bugs in Microsoft Virtual Java Machine

Amongg others there are bugs allowing file access on client computer...

4.9AI score
Exploits0References4Affected Software1
NVD
NVD
added 2002/10/11 4:0 a.m.23 views

CVE-2002-0867

Microsoft Virtual Machine VM up to and including build 5.0.3805 allows remote attackers to cause a denial of service crash in Internet Explorer via invalid handle data in a Java applet, aka "Handle Validation Flaw."...

5CVSS6.6AI score0.27267EPSS
Exploits0References4
NVD
NVD
added 2002/10/11 4:0 a.m.18 views

CVE-2002-0866

Java Database Connectivity JDBC classes in Microsoft Virtual Machine VM up to and including 5.0.3805 allow remote attackers to load and execute DLLs dynamic link libraries via a Java applet that calls the constructor for com.ms.jdbc.odbc.JdbcOdbc with the desired DLL terminated by a null string,...

7.5CVSS6.9AI score0.41356EPSS
Exploits0References5
NVD
NVD
added 2002/10/11 4:0 a.m.20 views

CVE-2002-0865

A certain class that supports XML Extensible Markup Language in Microsoft Virtual Machine VM 5.0.3805 and earlier, probably com.ms.osp.ospmrshl, exposes certain unsafe methods, which allows remote attackers to execute unsafe code via a Java applet, aka "Inappropriate Methods Exposed in XML Suppor...

7.5CVSS7.1AI score0.19841EPSS
Exploits0References4
Symantec
Symantec
added 2002/09/19 12:0 a.m.15 views

Microsoft Virtual Machine Multiple JDBC Vulnerabilities

Description Microsoft Virtual Machine contains three vulnerabilities that could allow a remote attacker to execute code on the vulnerable system. Successful exploitation could lead to a complete system compromise. The first vulnerability allows remote execution of DLLs. These would be executed in...

0.6AI score
Exploits0References1Affected Software1
Rows per page
Query Builder