CVE-2002-0867

3 documents3 sources
Severity
5.0MEDIUM
EPSS
11.5%
top 6.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Virtual Machine
Timeline
PublishedOct 11
Latest updateApr 30

Description

Microsoft Virtual Machine (VM) up to and including build 5.0.3805 allows remote attackers to cause a denial of service (crash) in Internet Explorer via invalid handle data in a Java applet, aka "Handle Validation Flaw."

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDmicrosoft/virtual_machine8 versions+7

Patches

Patch: www.iss.netPatch: www.iss.net

🔴Vulnerability Details

2
GHSA
GHSA-2h8w-4xp8-5wc5: Microsoft Virtual Machine (VM) up to and including build 52022-04-30
CVEList
CVE-2002-0867: Microsoft Virtual Machine (VM) up to and including build 52004-09-01
CVE-2002-0867 (MEDIUM CVSS 5) | Microsoft Virtual Machine (VM) up t | cvebase.io