CVE-2000-1099
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
09/01/2001
Last modified:
03/04/2025
Description
Java Runtime Environment in Java Development Kit (JDK) 1.2.2_05 and earlier can allow an untrusted Java class to call into a disallowed class, which could allow an attacker to escape the Java sandbox and conduct unauthorized activities.
Impact
Base Score 2.0
5.10
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:sun:jdk:*:*:*:*:*:*:*:* | 1.2.1 (including) | |
| cpe:2.3:a:sun:jdk:1.2.1:update3:*:*:*:*:*:* | ||
| cpe:2.3:a:sun:jdk:1.2.2:update4:*:*:*:*:*:* | ||
| cpe:2.3:a:sun:jdk:1.2.2:update5:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/199&type=0&nav=sec.sba
- http://www.osvdb.org/7255
- http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0011-132
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5605
- http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/199&type=0&nav=sec.sba
- http://www.osvdb.org/7255
- http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0011-132
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5605