CVE Database · CVE-2002-1325
CVSS v3.1
N/A
EPSS
13.86%
Published
Dec 23, 2002
Modified
Apr 15, 2026
Public PoC / Exploit
All weaponized →No public PoC or exploit code indexed for this CVE.
Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
Microsoft Virtual Machine (VM) build 5.0.3805 and earlier allows remote attackers to determine a local user's username via a Java applet that accesses the user.dir system property, aka "User.dir Exposure Vulnerability."
Affected Products (43)
References (4)
