CVE-2002-1260

critical

Description

The Java Database Connectivity (JDBC) APIs in Microsoft Virtual Machine (VM) 5.0.3805 and earlier allow remote attackers to bypass security checks and access database contents via an untrusted Java applet.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/10833

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-069

http://www.securityfocus.com/bid/6379

http://www.ciac.org/ciac/bulletins/n-026.shtml

Details

Source: Mitre, NVD

Published: 2002-12-23

Updated: 2019-04-30

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Severity: Critical