CVE-2002-1286

EPSS 6.95% · P91 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-1286

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to steal cookies and execute script in a different security context via a URL that contains a colon in the domain portion, which is not properly parsed and loads an applet from a malicious site within the security context of the site that is being visited by the user.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft JVM URI解析漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Microsoft JVM是一款使用在Win32操作环境中的Java虚拟机系统，Microsoft JVM包含在大部分Windows版本中，也既包含在大部分Internet Explorer版本中。Microsoft JVM有时也可以通过独立下载获得。 Microsoft JVM解析URI内容时缺少检查，远程攻击者可以利用这个漏洞欺骗目标用户，窃取目标用户基于认证的Cookie信息。如果URI中包含冒号用于指定端口号，Java代码处理时就会发生错误。如使用户把地址 80@www.bank.com/ban

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2002-1286

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2002-1286

请登录查看更多情报信息。

http://www.securityfocus.com/bid/6142vdb-entryx_refsource_BID
http://www.kb.cert.org/vuls/id/657625third-party-advisoryx_refsource_CERT-VN
https://exchange.xforce.ibmcloud.com/vulnerabilities/10579vdb-entryx_refsource_XF
http://marc.info/?l=ntbugtraq&m=103684360031565&w=2mailing-listx_refsource_NTBUGTRAQ
http://marc.info/?l=bugtraq&m=103682630823080&w=2mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2002-1286

Same Patch Batch · n/a · 2002-11-14 · 17 CVEs total

CVE-2002-1247		KDE KIO子系统网络协议实现任意命令执行漏洞
CVE-2002-1276		SquirrelMail global.php 跨站脚本漏洞
CVE-2002-1279		MasqMail缓冲区溢出漏洞
CVE-2002-1281		KDE KIO子系统网络协议实现任意命令执行漏洞
CVE-2002-1282		KDE KIO子系统网络协议实现任意命令执行漏洞
CVE-2002-1283		Novell Netware eMFrame iManage缓冲区溢出漏洞
CVE-2002-1285		LPRNG runlpr本地权限提升漏洞
CVE-2002-1287		Microsoft JVM类装载缓冲区溢出漏洞
CVE-2002-1288		Microsoft JVM远程信息泄露漏洞
CVE-2002-1289		Microsoft JVM INativeServices未授权内存访问漏洞
CVE-2002-1290		Microsoft JVM未授权剪贴板访问漏洞
CVE-2002-1291		Microsoft JVM Codebase信息泄露漏洞
CVE-2002-1292		Microsoft JVM Package访问限制可绕过漏洞
CVE-2002-1293		Microsoft JVM CAB文件装载漏洞
CVE-2002-1294		Microsoft JVM HTML对象应用拒绝服务攻击漏洞
CVE-2002-1295		Microsoft JVM HTML Applet标记类限制可绕过漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2002-1286

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2002-1286

I. Basic Information for CVE-2002-1286

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2002-1286

III. Intelligence Information for CVE-2002-1286

Same Patch Batch · n/a · 2002-11-14 · 17 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2002-1286

Leave a comment