Vulnerabilities > CVE-2002-0979 - Unspecified vulnerability in Microsoft Virtual Machine

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

microsoft

NVD

Published: 2002-09-24

Updated: 2016-10-18

Summary

The Java logging feature for the Java Virtual Machine in Internet Explorer writes output from functions such as System.out.println to a known pathname, which can be used to execute arbitrary code.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Virtual Machine *	1

References

http://marc.info/?l=bugtraq&m=102961031107261&w=2
http://www.iss.net/security_center/static/9886.php
http://www.securityfocus.com/bid/5491