The ByteCode Verifier component of Microsoft Virtual Machine (VM) build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka Flaw in Microsoft VM Could Enable System Compromise.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Virtual_machine | Microsoft | 3802 (including) | 3802 (including) |
| Virtual_machine | Microsoft | 3805 (including) | 3805 (including) |
| Virtual_machine | Microsoft | 3809 (including) | 3809 (including) |
References
- http://www.iss.net/security_center/static/11751.php
- http://www.kb.cert.org/vuls/id/447569
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-011
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A136
- http://www.iss.net/security_center/static/11751.php
- http://www.kb.cert.org/vuls/id/447569
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-011
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A136