CVE-2000-0162

3 documents3 sources

Severity

5.1MEDIUM

EPSS

1.5%

top 19.01%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft IE Microsoft Internet Explorer Microsoft Visual Studio

Timeline

PublishedFeb 18

Latest updateApr 30

Description

The Microsoft virtual machine (VM) in Internet Explorer 4.x and 5.x allows a remote attacker to read files via a malicious Java applet that escapes the Java sandbox, aka the "VM File Reading" vulnerability.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages3 packages

▶NVDmicrosoft/internet_explorer4.0

▶NVDmicrosoft/ie4 versions+3

▶NVDmicrosoft/visual_studio6.0

🔴Vulnerability Details

GHSA

GHSA-pc2c-8pxg-2287: The Microsoft virtual machine (VM) in Internet Explorer 4↗2022-04-30

▶

CVEList

CVE-2000-0162: The Microsoft virtual machine (VM) in Internet Explorer 4↗2000-03-22

▶