CVE-2003-1521
Sun Java Plug-In <1.4.2_02 - RCE
Title source: llmDescription
Sun Java Plug-In 1.4 through 1.4.2_02 allows remote attackers to repeatedly access the floppy drive via the createXmlDocument method in the org.apache.crimson.tree.XmlDocument class, which violates the Java security model.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Marc Schoenefeld · javaremotewindows
https://www.exploit-db.com/exploits/23270
Scores
EPSS
0.0230
EPSS Percentile
84.8%
Details
Status
published
Products (4)
sun/java_plug-in
1.4
sun/java_plug-in
1.4.2
sun/java_plug-in
1.4.2_01
sun/java_plug-in
1.4.2_02
Published
Dec 31, 2003
Tracked Since
Feb 18, 2026