PT-2002-1165 · Oracle · Sdk+2

Published

2002-03-19

Updated

2018-10-12

CVE-2002-0076

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Java Runtime Environment (JRE) versions prior to the fixed version

Description The issue allows remote attackers to escape the Java sandbox and execute commands via an applet containing an illegal cast operation. This affects various implementations that use vulnerable versions of SDK or JDK.

Recommendations For Java Runtime Environment (JRE) versions prior to the fixed version, update to a version that includes the fix for this issue to prevent exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0076

Affected Products

Jdk

Java Runtime Environment

Sdk

PT-2002-1165 · Oracle · Sdk+2

CVE-2002-0076

Related Identifiers

Affected Products

References · 6