What is the severity of CVE-2002-0058?

CVE-2002-0058 is classified as a high severity vulnerability due to its potential for session hijacking.

How do I fix CVE-2002-0058?

Fixing CVE-2002-0058 involves updating the affected Java Runtime Environment or Java Development Kit to a later version that addresses this vulnerability.

Which software versions are affected by CVE-2002-0058?

CVE-2002-0058 affects multiple versions of the Sun JRE, JDK, and Microsoft Virtual Machine, including versions 1.1.8, 1.2.2, and 1.3.0.

Can CVE-2002-0058 be exploited remotely?

Yes, CVE-2002-0058 can be exploited remotely by malicious websites to hijack or sniff web client sessions.

What types of attacks does CVE-2002-0058 facilitate?

CVE-2002-0058 facilitates session hijacking attacks by allowing an applet to redirect a user's session to a different server.

Vulnerability/
CVE-2002-0058

medium

CWE

NVD-CWE-Other

7/3/2002

8/8/2024

CVE-2002-0058

First published: Thu Mar 07 2002(Updated: )

Vulnerability in Java Runtime Environment (JRE) allows remote malicious web sites to hijack or sniff a web client's sessions, when an HTTP proxy is being used, via a Java applet that redirects the session to another server, as seen in (1) Netscape 6.0 through 6.1 and 4.79 and earlier, (2) Microsoft VM build 3802 and earlier as used in Internet Explorer 4.x and 5.x, and possibly other implementations that use vulnerable versions of SDK or JDK.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Sun SDK	=1.3_02
Sun SDK	=1.2.2_10
Sun JRE	=1.1.8-update7
Sun JRE	=1.3.0-update2
Microsoft Virtual Machine	=3802
OpenJDK	=1.1.8-update13
OpenJDK	=1.1.8-update7
Sun JRE	=1.1.8-update13
Sun SDK	=1.1.8_007
Sun SDK	=1.2.2_010
Sun JRE	=1.2.2-update10

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2002-0058?
CVE-2002-0058 is classified as a high severity vulnerability due to its potential for session hijacking.
How do I fix CVE-2002-0058?
Fixing CVE-2002-0058 involves updating the affected Java Runtime Environment or Java Development Kit to a later version that addresses this vulnerability.
Which software versions are affected by CVE-2002-0058?
CVE-2002-0058 affects multiple versions of the Sun JRE, JDK, and Microsoft Virtual Machine, including versions 1.1.8, 1.2.2, and 1.3.0.
Can CVE-2002-0058 be exploited remotely?
Yes, CVE-2002-0058 can be exploited remotely by malicious websites to hijack or sniff web client sessions.
What types of attacks does CVE-2002-0058 facilitate?
CVE-2002-0058 facilitates session hijacking attacks by allowing an applet to redirect a user's session to a different server.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/weakness
agent/references
agent/last-modified-date
agent/severity
agent/description
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/sun
canonical/sun sdk
version/sun sdk/1.3_02
version/sun sdk/1.2.2_10
canonical/sun jre
version/sun jre/1.1.8-update7
version/sun jre/1.3.0-update2
vendor/microsoft
canonical/microsoft virtual machine
version/microsoft virtual machine/3802
canonical/openjdk
version/openjdk/1.1.8-update13
version/openjdk/1.1.8-update7
version/sun jre/1.1.8-update13
version/sun sdk/1.1.8_007
version/sun sdk/1.2.2_010
version/sun jre/1.2.2-update10

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.