CVE-2002-0076

N/A Unknown
Published: March 19, 2002 Modified: April 16, 2026
View on NVD

Description

Java Runtime Environment (JRE) Bytecode Verifier allows remote attackers to escape the Java sandbox and execute commands via an applet containing an illegal cast operation, as seen in (1) Microsoft VM build 3802 and earlier as used in Internet Explorer 4.x and 5.x, (2) Netscape 6.2.1 and earlier, and possibly other implementations that use vulnerable versions of SDK or JDK, aka a variant of the "Virtual Machine Verifier" vulnerability.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/218
Source: cve@mitre.org
Vendor Advisory
http://www.iss.net/security_center/static/8480.php
Source: cve@mitre.org
http://www.securityfocus.com/bid/4313
Source: cve@mitre.org
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-013
Source: cve@mitre.org
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/218
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.iss.net/security_center/static/8480.php
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/4313
Source: af854a3a-2127-422b-91ae-364da2661108
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-013
Source: af854a3a-2127-422b-91ae-364da2661108

8 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
Exploitation Status
Not in CISA KEV

Affected Vendors

microsoft sun hp