Vulnerabilities > CVE-2003-0111 - Unspecified vulnerability in Microsoft products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The ByteCode Verifier component of Microsoft Virtual Machine (VM) build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Flaw in Microsoft VM Could Enable System Compromise."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 | |
OS | 8 |
Exploit-Db
description | Microsoft Java Virtual Machine 3802 Series Bytecode Verifier Vulnerability. CVE-2003-0111. Remote exploit for windows platform |
id | EDB-ID:22027 |
last seen | 2016-02-02 |
modified | 2002-11-21 |
published | 2002-11-21 |
reporter | Last Stage of Delirium |
source | https://www.exploit-db.com/download/22027/ |
title | Microsoft Java Virtual Machine 3802 Series - Bytecode Verifier Vulnerability |
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS03-011.NASL |
description | The remote host is running a Microsoft VM machine that has a bug in its bytecode verifier that could allow a remote attacker to execute arbitrary code on this host with the privileges of the user running the VM. To exploit this vulnerability, an attacker would need to send a malformed applet to a user on this host and have him execute it. The malicious applet would then be able to execute code outside the sandbox of the VM. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 11528 |
published | 2003-04-10 |
reporter | This script is Copyright (C) 2003-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/11528 |
title | MS03-011: Flaw in Microsoft VM (816093) |
code |
|
Oval
accepted | 2004-06-16T12:00:00.000-04:00 | ||||
class | vulnerability | ||||
contributors |
| ||||
description | The ByteCode Verifier component of Microsoft Virtual Machine (VM) build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Flaw in Microsoft VM Could Enable System Compromise." | ||||
family | windows | ||||
id | oval:org.mitre.oval:def:136 | ||||
status | accepted | ||||
submitted | 2004-04-30T12:00:00.000-04:00 | ||||
title | Microsoft Java Virtual Machine Security Bypass | ||||
version | 64 |