5

CVE-2002-1258

EPSS 4.36%
Published 23.12.2002 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Two vulnerabilities in Microsoft Virtual Machine (VM) up to and including build 5.0.3805, as used in Internet Explorer and other applications, allow remote attackers to read files via a Java applet with a spoofed location in the CODEBASE parameter in the APPLET tag, possibly due to a parsing error.

Affected products Warnungen 0 Metrics 2 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows 2000

Microsoft ≫ Windows 2000 Updatesp1

Microsoft ≫ Windows 2000 Updatesp2

Microsoft ≫ Windows 2000 Updatesp3

Microsoft ≫ Windows 2000 Terminal Services

Microsoft ≫ Windows 2000 Terminal Services Updatesp1

Microsoft ≫ Windows 2000 Terminal Services Updatesp2

Microsoft ≫ Windows 2000 Terminal Services Updatesp3

Microsoft ≫ Windows 95

Microsoft ≫ Windows 95 Updatesr2

Microsoft ≫ Windows 98 Updategold

Microsoft ≫ Windows 98se

Microsoft ≫ Windows Me

Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionworkstation

Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionworkstation

Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionworkstation

Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionworkstation

Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionworkstation

Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionworkstation

Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionworkstation

Microsoft ≫ Windows Xp Updategold Editionprofessional

Microsoft ≫ Windows Xp Updatesp1 Editionhome

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	4.36%	0.885

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-069

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A582

https://nvd.nist.gov/vuln/detail/CVE-2002-1258

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2002-1258

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2002-1258

EUVD