CVE-2003-0111

high Microsoft
CVSS v3 Base Score
7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS Score
39.3%
Exploitation probability in 30 days
Top 3% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Published: May 5, 2003 (8410 days ago)
Last Modified: April 16, 2026
Vendor: Microsoft
Source: NVD

Description

The ByteCode Verifier component of Microsoft Virtual Machine (VM) build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Flaw in Microsoft VM Could Enable System Compromise."

CWE

NVD-CWE-Other

Affected Products

microsoft virtual machinemicrosoft windows 2000microsoft windows 2000 terminal services

References

🔗 www.iss.net 🔗 www.kb.cert.org 🔗 docs.microsoft.com 🔗 oval.cisecurity.org 🔗 www.iss.net