Unrated severityNVD Advisory· Published Nov 29, 2002· Updated Jun 16, 2026
CVE-2002-1288
CVE-2002-1288
Description
The Microsoft Java implementation, as used in Internet Explorer, allows remote attackers to determine the current directory of the Internet Explorer process via the getAbsolutePath() method in a File() call.
Affected products
2cpe:2.3:a:microsoft:java_virtual_machine:1.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:java_virtual_machine:1.1:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.