Vulnerabilities > CVE-2000-0162 - Unspecified vulnerability in Microsoft IE, Internet Explorer and Visual Studio

CVSS 5.1 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

high complexity

microsoft

NVD

Published: 2000-02-18

Updated: 2021-07-22

Summary

The Microsoft virtual machine (VM) in Internet Explorer 4.x and 5.x allows a remote attacker to read files via a malicious Java applet that escapes the Java sandbox, aka the "VM File Reading" vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft IE 4.1 Microsoft IE 5.0 Microsoft IE 5 Microsoft IE 4.0 Microsoft Visual Studio 6.0 Microsoft Internet Explorer 4.0	9

References

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-011