5

CVE-2002-0058

EPSS 2.81%
Published 15.03.2002 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Vulnerability in Java Runtime Environment (JRE) allows remote malicious web sites to hijack or sniff a web client's sessions, when an HTTP proxy is being used, via a Java applet that redirects the session to another server, as seen in (1) Netscape 6.0 through 6.1 and 4.79 and earlier, (2) Microsoft VM build 3802 and earlier as used in Internet Explorer 4.x and 5.x, and possibly other implementations that use vulnerable versions of SDK or JDK.

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Virtual Machine Version3802

Sun ≫ Jdk Version1.1.8 Updateupdate13

Sun ≫ Jdk Version1.1.8 Updateupdate7

Sun ≫ Jre Version1.1.8 Updateupdate13

Sun ≫ Jre Version1.1.8 Updateupdate7

Sun ≫ Jre Version1.2.2 Updateupdate10

Sun ≫ Jre Version1.3.0 Updateupdate2

Sun ≫ Sdk Version1.1.8_007

Sun ≫ Sdk Version1.2.2_10

Sun ≫ Sdk Version1.2.2_010

Sun ≫ Sdk Version1.3_02

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	2.81%	0.848

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

http://marc.info/?l=bugtraq&m=101534535304228&w=2

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/216

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-013

https://nvd.nist.gov/vuln/detail/CVE-2002-0058

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2002-0058

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2002-0058

EUVD