CVE-2000-1099JDK vulnerability

4 documents4 sources
Severity
5.1MEDIUMNVD
EPSS
0.6%
top 30.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SUN JDK
Timeline
PublishedJan 9
Latest updateApr 30

Description

Java Runtime Environment in Java Development Kit (JDK) 1.2.2_05 and earlier can allow an untrusted Java class to call into a disallowed class, which could allow an attacker to escape the Java sandbox and conduct unauthorized activities.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages1 packages

NVDsun/jdk1.2.1+2

🔴Vulnerability Details

2
GHSA
GHSA-q526-52p8-p826: Java Runtime Environment in Java Development Kit (JDK) 12022-04-30
CVEList
CVE-2000-1099: Java Runtime Environment in Java Development Kit (JDK) 12001-01-22

💥Exploits & PoCs

1
Exploit-DB
WebTrends Reporting Center for Windows 4.0 d - GET Buffer Overflow2002-04-17
CVE-2000-1099 — SUN JDK vulnerability | cvebase