Vulnerability Database

310,470

Total vulnerabilities in the database

CVE-2000-1099

Java Runtime Environment in Java Development Kit (JDK) 1.2.2_05 and earlier can allow an untrusted Java class to call into a disallowed class, which could allow an attacker to escape the Java sandbox and conduct unauthorized activities.

Published: Jan 9, 2001
Updated: Nov 9, 2025
CVE: CVE-2000-1099
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
sun / jdk	1.2.2-update4	1.2.2-update4.x
sun / jdk	1.2.2-update5	1.2.2-update5.x
sun / jdk	1.2.1-update3	1.2.1-update3.x
sun / jdk	-	1.2.1.x

http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/199&type=0&nav=sec.sba
http://www.osvdb.org/7255
http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0011-132
https://exchange.xforce.ibmcloud.com/vulnerabilities/5605

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo