CVE-2002-1258
Last modified
CVE-2002-1258 is a vulnerability of currently unknown severity. Two vulnerabilities in Microsoft Virtual Machine (VM) up to and including build 5.0.3805, as used in Internet Explorer and other applications, allow remote attackers to read files via a Java applet with a spoofed location in the CODEBASE parameter in the APPLET tag, possibly due to a parsing error.. EPSS estimates a 15.30% chance of exploitation in the next 30 days.
Description
Two vulnerabilities in Microsoft Virtual Machine (VM) up to and including build 5.0.3805, as used in Internet Explorer and other applications, allow remote attackers to read files via a Java applet with a spoofed location in the CODEBASE parameter in the APPLET tag, possibly due to a parsing error.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Microsoft | Windows 2000 | All versions | — |
| Microsoft | Windows 2000 Terminal Services | All versions | — |
| Microsoft | Windows 95 | All versions | — |
| Microsoft | Windows 98 | All versions | Gold |
| Microsoft | Windows 98se | All versions | — |
| Microsoft | Windows Me | All versions | — |
| Microsoft | Windows Nt | 4.0 | Sp1 |
| Microsoft | Windows Xp | All versions | Gold |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2002-1258?
How severe is CVE-2002-1258?
How do I fix CVE-2002-1258?
Are you affected by CVE-2002-1258?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST