3000

DATE	CVE	VULNERABILITY TITLE	RISK
2002-10-11	CVE-2002-0867	Unspecified vulnerability in Microsoft Virtual Machine Microsoft Virtual Machine (VM) up to and including build 5.0.3805 allows remote attackers to cause a denial of service (crash) in Internet Explorer via invalid handle data in a Java applet, aka "Handle Validation Flaw." network low complexity microsoft	5.0
2002-10-11	CVE-2002-0866	Unspecified vulnerability in Microsoft Virtual Machine Java Database Connectivity (JDBC) classes in Microsoft Virtual Machine (VM) up to and including 5.0.3805 allow remote attackers to load and execute DLLs (dynamic link libraries) via a Java applet that calls the constructor for com.ms.jdbc.odbc.JdbcOdbc with the desired DLL terminated by a null string, aka "DLL Execution via JDBC Classes." network low complexity microsoft	7.5
2002-10-11	CVE-2002-0865	Unspecified vulnerability in Microsoft Virtual Machine A certain class that supports XML (Extensible Markup Language) in Microsoft Virtual Machine (VM) 5.0.3805 and earlier, probably com.ms.osp.ospmrshl, exposes certain unsafe methods, which allows remote attackers to execute unsafe code via a Java applet, aka "Inappropriate Methods Exposed in XML Support Classes." network low complexity microsoft	7.5
2000-01-31	CVE-2000-0132	Information Exposure vulnerability in Microsoft Virtual Machine 2000/3000 Microsoft Java Virtual Machine allows remote attackers to read files via the getSystemResourceAsStream function. network high complexity microsoft CWE-200	2.6
1999-10-21	CVE-2000-0327	Unspecified vulnerability in Microsoft Virtual Machine 2000/3000 Microsoft Virtual Machine (VM) allows remote attackers to escape the Java sandbox and execute commands via an applet containing an illegal cast operation, aka the "Virtual Machine Verifier" vulnerability. network high complexity microsoft	7.6