CVE-2003-0111
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2003-0111
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The ByteCode Verifier component of Microsoft Virtual Machine (VM) build 5.0.3809 and earlier, as used in Windows and Internet Explorer, allows remote attackers to bypass security checks and execute arbitrary code via a malicious Java applet, aka "Flaw in Microsoft VM Could Enable System Compromise."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Java虚拟机任意代码执行漏洞(MS03-011)
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft JVM是一款使用在Win32操作环境中的Java虚拟机系统,Microsoft JVM包含在大部分Windows版本中,也既包含在大部分Internet Explorer版本中。 Microsoft Java虚拟机的ByteCode校验组件对部分恶意代码缺少正确检查,远程攻击者可以利用这个漏洞构建恶意页面,诱使用户访问,可能以用户进程权限在系统上执行任意命令。 问题在于ByteCode校验组件中存在一个输入校验错误,当装载Java applet时没有检查部分恶意转移序列代码,攻击者构建
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2003-0111
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2003-0111
Please Login to view more intelligence information
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-011vendor-advisoryx_refsource_MS
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A136vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2003-0111
Same Patch Batch · n/a · 2003-04-15 · 13 CVEs total
| CVE-2003-0110 | Microsoft Winsock代理服务远程拒绝服务攻击漏洞(MS03-012) | |
| CVE-2003-0133 | GTKHTML Malformed HTML文件服务拒绝漏洞 | |
| CVE-2003-0136 | LPRng PSBanner以不安全方式建立临时文件漏洞 | |
| CVE-2003-0163 | Gaim-Encryption远程堆破坏漏洞 | |
| CVE-2003-0171 | Apple MacOS X DirectoryService权限提升漏洞 | |
| CVE-2003-0173 | SGI XFSDump Quotas文件符号链接漏洞 | |
| CVE-2003-0196 | Samba多个未明远程缓冲区溢出漏洞 | |
| CVE-2003-0198 | Apple MacOS X DropBox文件夹远程信息泄露漏洞 | |
| CVE-2003-0201 | Samba服务器call_trans2open远程缓冲区溢出漏洞 | |
| CVE-2003-0204 | KDE Postscript/PDF文件处理任意命令执行漏洞 | |
| CVE-2003-0207 | ps2epsi创建不安全临时文件漏洞 | |
| CVE-2003-0208 | Macromedia Flash ad用户跟踪性能跨站脚本(XSS)漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin - CVE-2026-8194
osTicket Dispatcher class.dispatcher.php cross-site request - CVE-2026-8193
Akaunting Invoice PDF Rendering dompdf.php server-side reque - CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out-
V. Comments for CVE-2003-0111
No comments yet