CVE-2002-0865
Last modified
CVE-2002-0865 is a vulnerability of currently unknown severity. A certain class that supports XML (Extensible Markup Language) in Microsoft Virtual Machine (VM) 5.0.3805 and earlier, probably com.ms.osp.ospmrshl, exposes certain unsafe methods, which allows remote attackers to execute unsafe code via a Java applet, aka "Inappropriate Methods Exposed in XML Support Classes.". EPSS estimates a 19.84% chance of exploitation in the next 30 days.
Description
A certain class that supports XML (Extensible Markup Language) in Microsoft Virtual Machine (VM) 5.0.3805 and earlier, probably com.ms.osp.ospmrshl, exposes certain unsafe methods, which allows remote attackers to execute unsafe code via a Java applet, aka "Inappropriate Methods Exposed in XML Support Classes."
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Virtual Machine | 2000 |
| Microsoft | Virtual Machine | 3000 |
| Microsoft | Virtual Machine | 3100 |
| Microsoft | Virtual Machine | 3188 |
| Microsoft | Virtual Machine | 3200 |
| Microsoft | Virtual Machine | 3300 |
| Microsoft | Virtual Machine | 3802 |
| Microsoft | Virtual Machine | 3805 |
References
- http://www.iss.net/security_center/static/10135.phpPatch, Vendor Advisory
- http://www.kb.cert.org/vuls/id/140898US Government Resource
- http://www.iss.net/security_center/static/10135.phpPatch, Vendor Advisory
- http://www.kb.cert.org/vuls/id/140898US Government Resource
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2002-0865?
How severe is CVE-2002-0865?
How do I fix CVE-2002-0865?
Are you affected by CVE-2002-0865?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST