Vulnerability Description
Symantec Java! JIT (Just-In-Time) Compiler for Netscape Communicator 4.0 through 4.8 allows remote attackers to execute arbitrary Java commands via an applet that uses a jump call, which is not correctly compiled by the JIT compiler.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec | Java | 4.0 |
References
- http://marc.info/?l=bugtraq&m=103798147613151&w=2
- http://www.lsd-pl.net/documents/javasecurity-1.0.0.pdf
- http://www.securityfocus.com/bid/6222Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10711
- http://marc.info/?l=bugtraq&m=103798147613151&w=2
- http://www.lsd-pl.net/documents/javasecurity-1.0.0.pdf
- http://www.securityfocus.com/bid/6222Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10711
FAQ
What is CVE-2002-2281?
CVE-2002-2281 is a vulnerability with a CVSS score of 10.0 (HIGH). Symantec Java! JIT (Just-In-Time) Compiler for Netscape Communicator 4.0 through 4.8 allows remote attackers to execute arbitrary Java commands via an applet that uses a jump call, which is not correc...
How severe is CVE-2002-2281?
CVE-2002-2281 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-2281?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Java.