CVE-2002-1260 — Microsoft Windows NT vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

8.8%

top 7.47%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows NT

Timeline

PublishedDec 23

Latest updateApr 30

Description

The Java Database Connectivity (JDBC) APIs in Microsoft Virtual Machine (VM) 5.0.3805 and earlier allow remote attackers to bypass security checks and access database contents via an untrusted Java applet.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDmicrosoft/windows_nt4.0

🔴Vulnerability Details

GHSA

GHSA-8wqg-hpmc-35r4: The Java Database Connectivity (JDBC) APIs in Microsoft Virtual Machine (VM) 5↗2022-04-30

▶

CVEList

CVE-2002-1260: The Java Database Connectivity (JDBC) APIs in Microsoft Virtual Machine (VM) 5↗2004-09-01

▶