CVE-2002-0865

Опубликовано: 11 окт. 2002

Источник: nvd

CVSS2: 7.5

EPSS Средний

Описание

A certain class that supports XML (Extensible Markup Language) in Microsoft Virtual Machine (VM) 5.0.3805 and earlier, probably com.ms.osp.ospmrshl, exposes certain unsafe methods, which allows remote attackers to execute unsafe code via a Java applet, aka "Inappropriate Methods Exposed in XML Support Classes."

Ссылки

http://www.iss.net/security_center/static/10135.php
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/140898
US Government Resource
http://www.securityfocus.com/bid/5752
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-052
http://www.iss.net/security_center/static/10135.php
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/140898
US Government Resource
http://www.securityfocus.com/bid/5752
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-052

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:virtual_machine:2000:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:virtual_machine:3000:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:virtual_machine:3100:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:virtual_machine:3188:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:virtual_machine:3200:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:virtual_machine:3300:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:virtual_machine:3802:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:virtual_machine:3805:*:*:*:*:*:*:*

EPSS

Процентиль: 94%

0.13126

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-gf4c-2362-w9fg

github

почти 4 года назад