Java Virtual Machine Security Vulnerabilities and Issues — Java Virtual Machine CVE List

Lucene search

MicrosoftJava Virtual Machine

3 matches found

CVE•added 2002/11/29 5:0 a.m.•38 views

CVE-2002-1287

Stack-based buffer overflow in the Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to cause a denial of service via a long class name through (1) Class.forName or (2) ClassLoader.loadClass.

5CVSS7.4AI score0.06096EPSS

CVE•added 2002/11/29 5:0 a.m.•36 views

CVE-2002-1291

The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to read arbitrary local files and network shares via an applet tag with a codebase set to a "file://%00" (null character) URL.

5CVSS7AI score0.06387EPSS

CVE•added 2002/11/29 5:0 a.m.•35 views

CVE-2002-1288

The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to determine the current directory of the Internet Explorer process via the getAbsolutePath() method in a File() call.

5CVSS6.9AI score0.05416EPSS