Suggest A Fix PC Support Forums > Ms Patch Available: Microsoft Vm Flaw

Full Version: Ms Patch Available: Microsoft Vm Flaw

Suggest A Fix PC Support Forums > Security > Security News and Warnings

Interceptor

Apr 13 2003, 11:27 PM

The Microsoft VM is a virtual machine for the Win32® operating environment. The Microsoft VM is shipped in most versions of Windows (a complete list is available in the FAQ), as well as in most versions of Internet Explorer.

The present Microsoft VM, which includes all previously released fixes to the VM, has been updated to include a fix for the newly reported security vulnerability. This new security vulnerability affects the ByteCode Verifier component of the Microsoft VM, and results because the ByteCode verifier does not correctly check for the presence of certain malicious code when a Java applet is being loaded. The attack vector for this new security issue would likely involve an attacker creating a malicious Java applet and inserting it into a web page that when opened, would exploit the vulnerability. An attacker could then host this malicious web page on a web site, or could send it to a user in e-mail.

For more information, go to Microsoft Security Bulletin MS03-011

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.