Vulnerabilities > Microsoft > Virtual Machine > 3805

DATE CVE VULNERABILITY TITLE RISK
2003-05-05 CVE-2003-0111 Unspecified vulnerability in Microsoft products
The ByteCode Verifier component of Microsoft Virtual Machine (VM) build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Flaw in Microsoft VM Could Enable System Compromise."
network
low complexity
microsoft
7.5
2002-10-11 CVE-2002-0867 Unspecified vulnerability in Microsoft Virtual Machine
Microsoft Virtual Machine (VM) up to and including build 5.0.3805 allows remote attackers to cause a denial of service (crash) in Internet Explorer via invalid handle data in a Java applet, aka "Handle Validation Flaw."
network
low complexity
microsoft
5.0
2002-10-11 CVE-2002-0866 Unspecified vulnerability in Microsoft Virtual Machine
Java Database Connectivity (JDBC) classes in Microsoft Virtual Machine (VM) up to and including 5.0.3805 allow remote attackers to load and execute DLLs (dynamic link libraries) via a Java applet that calls the constructor for com.ms.jdbc.odbc.JdbcOdbc with the desired DLL terminated by a null string, aka "DLL Execution via JDBC Classes."
network
low complexity
microsoft
7.5
2002-10-11 CVE-2002-0865 Unspecified vulnerability in Microsoft Virtual Machine
A certain class that supports XML (Extensible Markup Language) in Microsoft Virtual Machine (VM) 5.0.3805 and earlier, probably com.ms.osp.ospmrshl, exposes certain unsafe methods, which allows remote attackers to execute unsafe code via a Java applet, aka "Inappropriate Methods Exposed in XML Support Classes."
network
low complexity
microsoft
7.5