First published: Fri Oct 11 2002(Updated: )
Java Database Connectivity (JDBC) classes in Microsoft Virtual Machine (VM) up to and including 5.0.3805 allow remote attackers to load and execute DLLs (dynamic link libraries) via a Java applet that calls the constructor for com.ms.jdbc.odbc.JdbcOdbc with the desired DLL terminated by a null string, aka "DLL Execution via JDBC Classes."
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Virtual Machine | =3100 | |
Microsoft Virtual Machine | =3805 | |
Microsoft Virtual Machine | =3188 | |
Microsoft Virtual Machine | =3200 | |
Microsoft Virtual Machine | =3300 | |
Microsoft Virtual Machine | =3802 | |
Microsoft Virtual Machine | =2000 | |
Microsoft Virtual Machine | =3000 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.