CVE-2002-0058
First published: Thu Mar 07 2002(Updated: )
Vulnerability in Java Runtime Environment (JRE) allows remote malicious web sites to hijack or sniff a web client's sessions, when an HTTP proxy is being used, via a Java applet that redirects the session to another server, as seen in (1) Netscape 6.0 through 6.1 and 4.79 and earlier, (2) Microsoft VM build 3802 and earlier as used in Internet Explorer 4.x and 5.x, and possibly other implementations that use vulnerable versions of SDK or JDK.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sun SDK | =1.3_02 | |
| Sun SDK | =1.2.2_10 | |
| Sun JRE | =1.1.8-update7 | |
| Sun JRE | =1.3.0-update2 | |
| Microsoft Virtual Machine | =3802 | |
| Sun JDK | =1.1.8-update13 | |
| Sun JDK | =1.1.8-update7 | |
| Sun JRE | =1.1.8-update13 | |
| Sun SDK | =1.1.8_007 | |
| Sun SDK | =1.2.2_010 | |
| Sun JRE | =1.2.2-update10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/sun
- canonical/sun sdk
- version/sun sdk/1.3_02
- version/sun sdk/1.2.2_10
- canonical/sun jre
- version/sun jre/1.1.8-update7
- version/sun jre/1.3.0-update2
- vendor/microsoft
- canonical/microsoft virtual machine
- version/microsoft virtual machine/3802
- canonical/sun jdk
- version/sun jdk/1.1.8-update13
- version/sun jdk/1.1.8-update7
- version/sun jre/1.1.8-update13
- version/sun sdk/1.1.8_007
- version/sun sdk/1.2.2_010
- version/sun jre/1.2.2-update10