CVE-2002-1258

Name of the Vulnerable Software and Affected Versions: Microsoft Virtual Machine versions up to and including 5.0.3805

Description: The issue allows remote attackers to read files via a Java applet with a spoofed location in the CODEBASE parameter in the APPLET tag, possibly due to a parsing error. This affects Microsoft Virtual Machine as used in Internet Explorer and other applications.

Recommendations: For versions up to and including 5.0.3805, consider restricting access to Java applets or avoiding the use of the CODEBASE parameter in the APPLET tag until a fix is available.