English | Deutsch | Español | Português
 UserID:
 Passwd:
 new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   		     Search 61204 CVE descriptions
and 32582 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.11177
Category:Windows : Microsoft Bulletins
Title:Flaw in Microsoft VM Could Allow Code Execution (810030)
Summary:Checks for MS Hotfix Q329077, Flaw in Microsoft VM JDBC
Description:
Hotfix to fix Flaw in Microsoft VM
could Allow Code Execution (810030)

Impact of vulnerability: Three vulnerabilities, the most
serious of which could enable an attacker to gain complete
control over a user's system.

Maximum Severity Rating: Critical

Recommendation: Administrators should install the patch immediately.

Affected Software:

Versions of the Microsoft virtual machine (Microsoft VM) are
identified by build numbers, which can be determined using the
JVIEW tool as discussed in the FAQ. All builds of the Microsoft
VM up to and including build 5.0.3805 are affected by these
vulnerabilities.

Supersedes :

http://www.microsoft.com/technet/security/bulletin/ms02-052.mspx

See :
http://www.microsoft.com/technet/security/bulletin/ms02-069.mspx

Also Note: Requires full registry access (Administrator)
to run the test.
Cross-Ref: BugTraq ID: 6371
BugTraq ID: 6372
Common Vulnerability Exposure (CVE) ID: CVE-2002-1257
Microsoft Security Bulletin: MS02-069
http://www.microsoft.com/technet/security/bulletin/ms02-069.asp
http://www.securityfocus.com/bid/6371
Common Vulnerability Exposure (CVE) ID: CVE-2002-1258
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:582
Common Vulnerability Exposure (CVE) ID: CVE-2002-1183
Microsoft Security Bulletin: MS02-050
http://www.microsoft.com/technet/security/bulletin/ms02-050.asp
XForce ISS Database: ssl-ca-certificate-spoofing(9776)
http://xforce.iss.net/xforce/xfdb/9776
BugTraq ID: 5410
http://www.securityfocus.com/bid/5410
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1059
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1455
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2108
Common Vulnerability Exposure (CVE) ID: CVE-2002-0862
Bugtraq: 20020805 IE SSL Vulnerability (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=102866120821995&w=2
Bugtraq: 20020812 IE SSL Exploit (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=102918200405308&w=2
Bugtraq: 20020819 Insufficient Verification of Client Certificates in IIS 5.0 pre sp3 (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=102976967730450&w=2
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1056
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1332
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2671
CopyrightThis script is Copyright (C) 2002 SECNAP Network Security, LLC

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  
 Forgot userid or passwd?
Email/Userid:



Home | About Us | Contact Us | Partner Programs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois

© 1998-2013 E-Soft Inc. All rights reserved.