Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1294


Vulnerability Score 7.5 7.5
CVE Id CVE-2002-1294
Last Modified 05 Sep 2008 04:30:15
Published 29 Nov 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



The Microsoft Java implementation, as used in Internet Explorer, can provide HTML object references to applets via Javascript, which allows remote attackers to cause a denial of service (crash due to illegal memory accesses) and possibly conduct other unauthorized activities via an applet that uses those references to access proprietary Microsoft methods.

Vulnerable Systems


  • Microsoft Java Virtual Machine 1.1


BID - 6135

XF - msvm-html-object-dos(10587)

BUGTRAQ - 20021108 Technical information about unpatched MS Java vulnerabilities

Last Updated: 27 May 2016 10:37:16