Summary
Hotfix to fix Flaw in Microsoft VM
could Allow Code Execution (810030)
Impact of vulnerability: Three vulnerabilities, the most serious of which could enable an attacker to gain complete control over a user's system.
Maximum Severity Rating: Critical
Recommendation: Administrators should install the patch immediately.
Affected Software:
Versions of the Microsoft virtual machine (Microsoft VM) are identified by build numbers, which can be determined using the JVIEW tool as discussed in the FAQ. All builds of the Microsoft VM up to and including build 5.0.3805 are affected by these vulnerabilities.
Supersedes :
http://www.microsoft.com/technet/security/bulletin/ms02-052.mspx
See :
http://www.microsoft.com/technet/security/bulletin/ms02-069.mspx
Also Note: Requires full registry access (Administrator) to run the test.
Severity
Classification
-
CVE CVE-2002-0862, CVE-2002-1183, CVE-2002-1257, CVE-2002-1258 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Microsoft .NET Framework Open Data Protocol DOS Vulnerability (2769327)
- Microsoft .NET Framework Authentication Bypass and Spoofing Vulnerabilities (2836440)
- Microsoft Foundation Class (MFC) Library Remote Code Execution Vulnerability (2500212)
- Microsoft DirectShow Remote Code Execution Vulnerability (977935)
- Microsoft .NET Framework Remote Code Execution Vulnerability (2671605)