CVE-2002-1325

Description

Microsoft Virtual Machine (VM) build 5.0.3805 and earlier allows remote attackers to determine a local user's username via a Java applet that accesses the user.dir system property, aka "User.dir Exposure Vulnerability."

Affected products

• Microsoft / windows_2000
• Microsoft / windows_2000
• Microsoft / windows_2000
• Microsoft / windows_2000
• Microsoft / windows_2000_terminal_services
• Microsoft / windows_2000_terminal_services
• Microsoft / windows_2000_terminal_services
• Microsoft / windows_2000_terminal_services
• Microsoft / windows_95
• Microsoft / windows_95
• Microsoft / windows_98
• Microsoft / windows_98se
• Microsoft / windows_me
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_nt4.0 – 4.0
• Microsoft / windows_xp
• Microsoft / windows_xp

References

• MISChttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-069
• MISChttp://www.securityfocus.com/bid/6380