CVE-2002-1288

EPSS 8.79% · P93 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-1288

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to determine the current directory of the Internet Explorer process via the getAbsolutePath() method in a File() call.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft JVM远程信息泄露漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Microsoft JVM是一款使用在Win32操作环境中的Java虚拟机系统，Microsoft JVM包含在大部分Windows版本中，也既包含在大部分Internet Explorer版本中。Microsoft JVM有的时候也可以通过独立下载获得。 Microsoft JVM由于不充分的访问验证，远程攻击者利用这个漏洞可以构建任意applet获取当前Internet Explorer路径。由于缺少充分的安全检查，任意Java applet可以通过new File(".").getAbsolute

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2002-1288

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2002-1288

请登录查看更多情报信息。

http://www.securityfocus.com/bid/6139vdb-entryx_refsource_BID
http://marc.info/?l=ntbugtraq&m=103684360031565&w=2mailing-listx_refsource_NTBUGTRAQ
http://marc.info/?l=bugtraq&m=103682630823080&w=2mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2002-1288

Same Patch Batch · n/a · 2002-11-14 · 17 CVEs total

CVE-2002-1247		KDE KIO子系统网络协议实现任意命令执行漏洞
CVE-2002-1276		SquirrelMail global.php 跨站脚本漏洞
CVE-2002-1279		MasqMail缓冲区溢出漏洞
CVE-2002-1281		KDE KIO子系统网络协议实现任意命令执行漏洞
CVE-2002-1282		KDE KIO子系统网络协议实现任意命令执行漏洞
CVE-2002-1283		Novell Netware eMFrame iManage缓冲区溢出漏洞
CVE-2002-1285		LPRNG runlpr本地权限提升漏洞
CVE-2002-1286		Microsoft JVM URI解析漏洞
CVE-2002-1287		Microsoft JVM类装载缓冲区溢出漏洞
CVE-2002-1289		Microsoft JVM INativeServices未授权内存访问漏洞
CVE-2002-1290		Microsoft JVM未授权剪贴板访问漏洞
CVE-2002-1291		Microsoft JVM Codebase信息泄露漏洞
CVE-2002-1292		Microsoft JVM Package访问限制可绕过漏洞
CVE-2002-1293		Microsoft JVM CAB文件装载漏洞
CVE-2002-1294		Microsoft JVM HTML对象应用拒绝服务攻击漏洞
CVE-2002-1295		Microsoft JVM HTML Applet标记类限制可绕过漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2002-1288

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2002-1288

I. Basic Information for CVE-2002-1288

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2002-1288

III. Intelligence Information for CVE-2002-1288

Same Patch Batch · n/a · 2002-11-14 · 17 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2002-1288

Leave a comment