Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0111

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0111
Last Modified 10 Sep 2008 03:17:57
Published 05 May 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0111

Summary

The ByteCode Verifier component of Microsoft Virtual Machine (VM) build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Flaw in Microsoft VM Could Enable System Compromise."

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows 2000 Terminal Services

Application

  • Microsoft Virtual Machine 3802

  • Microsoft Virtual Machine 3805

  • Microsoft Virtual Machine 3809


References

CERT-VN - VU#447569

MS - MS03-011

XF - msvm-bytecode-improper-validation(11751)

Related Patches

MS03-011 816093 Flaw in Microsoft VM Could Enable System Compromise (SEE NOTE) (Rev 3)


Last Updated: 27 May 2016 10:37:47