This script is Copyright (C) 2003-2017 Tenable Network Security, Inc.
Arbitrary code can be executed on the remote host through the VM.
The remote host is running a Microsoft VM machine that has a bug in
its bytecode verifier that could allow a remote attacker to execute
arbitrary code on this host with the privileges of the user running
To exploit this vulnerability, an attacker would need to send a
malformed applet to a user on this host and have him execute it. The
malicious applet would then be able to execute code outside the
sandbox of the VM.
See also :
Microsoft VM is no longer supported, and previous updates are no
longer available. Upgrade to an actively supported product.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.7
Public Exploit Available : true