Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0865

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0865
Last Modified 10 Sep 2008 03:13:02
Published 11 Oct 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0865

Summary

A certain class that supports XML (Extensible Markup Language) in Microsoft Virtual Machine (VM) 5.0.3805 and earlier, probably com.ms.osp.ospmrshl, exposes certain unsafe methods, which allows remote attackers to execute unsafe code via a Java applet, aka "Inappropriate Methods Exposed in XML Support Classes."

Vulnerable Systems

Application

  • Microsoft Virtual Machine 2000

  • Microsoft Virtual Machine 3000

  • Microsoft Virtual Machine 3100

  • Microsoft Virtual Machine 3188

  • Microsoft Virtual Machine 3200

  • Microsoft Virtual Machine 3300

  • Microsoft Virtual Machine 3802

  • Microsoft Virtual Machine 3805


References

CERT-VN - VU#140898

MS - MS02-052

XF - msvm-xml-methods-access(10135)

BID - 5752


Last Updated: 27 May 2016 10:37:06