CVE-2002-1325 — Microsoft Windows NT vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

8.5%

top 7.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows NT

Timeline

PublishedDec 23

Latest updateApr 30

Description

Microsoft Virtual Machine (VM) build 5.0.3805 and earlier allows remote attackers to determine a local user's username via a Java applet that accesses the user.dir system property, aka "User.dir Exposure Vulnerability."

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/windows_nt4.0

🔴Vulnerability Details

GHSA

GHSA-f83w-r37q-vphp: Microsoft Virtual Machine (VM) build 5↗2022-04-30

▶

CVEList

CVE-2002-1325: Microsoft Virtual Machine (VM) build 5↗2004-09-01

▶