Vulnerabilities > CVE-2002-1291 - Information Disclosure vulnerability in Microsoft Java Virtual Machine 1.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to read arbitrary local files and network shares via an applet tag with a codebase set to a "file://%00" (null character) URL.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |