CVE-2003-0111
Microsoft Java Virtual Machine 3802 Series - Bytecode Verifier
Severity Score
7.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The ByteCode Verifier component of Microsoft Virtual Machine (VM) build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Flaw in Microsoft VM Could Enable System Compromise."
El componente Verificador de ByteCode de la Máquina Virtual (VW) de Microsoft compilación 5.0.3809 y anteriores, usada en en Windows y en Internet Explorer, permite a atacantes remotos eludir comprobaciones de seguridad y ejecutar código arbitrario mediante un applet de Java malicioso, también conocido como "Fallo en Microsoft VW Podría Permitir Compromiso del Sistema"
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2002-11-21 First Exploit
- 2003-02-26 CVE Reserved
- 2003-04-15 CVE Published
- 2024-02-11 EPSS Updated
- 2024-08-08 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A136 | Signature |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/22027 | 2002-11-21 |
| URL | Date | SRC |
|---|---|---|
| http://www.iss.net/security_center/static/11751.php | 2019-04-30 | |
| http://www.kb.cert.org/vuls/id/447569 | 2019-04-30 |
| URL | Date | SRC |
|---|---|---|
| https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-011 | 2019-04-30 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Microsoft Search vendor "Microsoft" | Virtual Machine Search vendor "Microsoft" for product "Virtual Machine" | 3802 Search vendor "Microsoft" for product "Virtual Machine" and version "3802" | - |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Virtual Machine Search vendor "Microsoft" for product "Virtual Machine" | 3805 Search vendor "Microsoft" for product "Virtual Machine" and version "3805" | - |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Virtual Machine Search vendor "Microsoft" for product "Virtual Machine" | 3809 Search vendor "Microsoft" for product "Virtual Machine" and version "3809" | - |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Windows 2000 Search vendor "Microsoft" for product "Windows 2000" | * | - |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Windows 2000 Search vendor "Microsoft" for product "Windows 2000" | * | sp1 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Windows 2000 Search vendor "Microsoft" for product "Windows 2000" | * | sp2 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Windows 2000 Search vendor "Microsoft" for product "Windows 2000" | * | sp3 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Windows 2000 Terminal Services Search vendor "Microsoft" for product "Windows 2000 Terminal Services" | * | - |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Windows 2000 Terminal Services Search vendor "Microsoft" for product "Windows 2000 Terminal Services" | * | sp1 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Windows 2000 Terminal Services Search vendor "Microsoft" for product "Windows 2000 Terminal Services" | * | sp2 |
Affected
| ||||||
| Microsoft Search vendor "Microsoft" | Windows 2000 Terminal Services Search vendor "Microsoft" for product "Windows 2000 Terminal Services" | * | sp3 |
Affected
| ||||||