Vulnerability Description
A certain class that supports XML (Extensible Markup Language) in Microsoft Virtual Machine (VM) 5.0.3805 and earlier, probably com.ms.osp.ospmrshl, exposes certain unsafe methods, which allows remote attackers to execute unsafe code via a Java applet, aka "Inappropriate Methods Exposed in XML Support Classes."
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Virtual Machine | 2000 |
References
- http://www.iss.net/security_center/static/10135.phpPatchVendor Advisory
- http://www.kb.cert.org/vuls/id/140898US Government Resource
- http://www.securityfocus.com/bid/5752
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-05
- http://www.iss.net/security_center/static/10135.phpPatchVendor Advisory
- http://www.kb.cert.org/vuls/id/140898US Government Resource
- http://www.securityfocus.com/bid/5752
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-05
FAQ
What is CVE-2002-0865?
CVE-2002-0865 is a vulnerability with a CVSS score of 7.5 (HIGH). A certain class that supports XML (Extensible Markup Language) in Microsoft Virtual Machine (VM) 5.0.3805 and earlier, probably com.ms.osp.ospmrshl, exposes certain unsafe methods, which allows remote...
How severe is CVE-2002-0865?
CVE-2002-0865 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0865?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Virtual Machine.