Microsoft IE Virtual Machine Sandbox漏洞

漏洞信息详情

Microsoft IE Virtual Machine Sandbox漏洞

• CNNVD编号：CNNVD-199910-036
• 危害等级： 超危
  
  
• CVE编号：
  CVE-1999-0766
  
• 漏洞类型：
  
  
  配置错误
  
• 发布时间：
  
  1999-10-21
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2005-05-02
  
• 厂        商：
  
  microsoft
• 漏洞来源：
  This vulnerability…

Microsoft Java虚拟机存在漏洞。恶意Java支程序可以借助此漏洞执行在sandbox环境外的任意命令。

Microsoft has released a patch for this vulnerability. It is located at
http://www.microsoft.com/java/vm/dl_vm32.htm
Microsoft recommends disabling java applets until this patch has been applied.
Additional Microsoft VM components may be impacted by the vulnerability. To see if you’re vulnerable, type JVIEW from a command prompt. Evaluate the last four digits of the VM version number. Versions at or below 1520 are NOT vulnerable. Versions above 1520 ARE vulnerable. The patch referenced above is version 3186. This version is SAFE from this vulnerability.

来源: BID
名称: 600
链接:http://www.securityfocus.com/bid/600

来源: MS
名称: MS99-031
链接:http://www.microsoft.com/technet/security/bulletin/ms99-031.mspx

来源: MSKB
名称: Q240346
链接:http://support.microsoft.com/default.aspx?scid=kb;%5BLN%5D;Q240346