Vulnerabilities > CVE-2002-0866 - Unspecified vulnerability in Microsoft Virtual Machine
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Java Database Connectivity (JDBC) classes in Microsoft Virtual Machine (VM) up to and including 5.0.3805 allow remote attackers to load and execute DLLs (dynamic link libraries) via a Java applet that calls the constructor for com.ms.jdbc.odbc.JdbcOdbc with the desired DLL terminated by a null string, aka "DLL Execution via JDBC Classes."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 8 |
Exploit-Db
description | MS VM 2000/3000/3100/3188/3200/3300/3802/3805 series JDBC Class Code Execution. CVE-2002-0866. Remote exploit for windows platform |
id | EDB-ID:21808 |
last seen | 2016-02-02 |
modified | 2002-09-19 |
published | 2002-09-19 |
reporter | anonymous |
source | https://www.exploit-db.com/download/21808/ |
title | Microsoft VM 2000/3000/3100/3188/3200/3300/3802/3805 series JDBC Class Code Execution |