CVE-2002-1286

Name of the Vulnerable Software and Affected Versions: Microsoft Java implementation (affected versions not specified)

Description: The issue allows remote attackers to steal cookies and execute script in a different security context. This is achieved via a URL that contains a colon in the domain portion, which is not properly parsed. As a result, an applet from a malicious site can be loaded within the security context of the site being visited by the user.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.