vbscript.dll regular expression object (RegExp) memory leak

Hello, The following vbscript, which uses the RegExp object, causes memory leak tested under Windows XP SP2 with Script Engine V5.6; when you run it, locate the associated wscript.exe or cscript.exe process in the Windows task manager, then click "OK" in the "Start" message box, and see how the...

jscriptdll.txt

hi, i found a bug in jscript.dll... here is a small report on it... -------- Abstract -------- Microsoft Corp.'s Windows Script Engine within the Windows operating system OS interprets and executes script code written in scripting languages such as VBscript and JScript. Such script code can be us...

CVE-2003-0010

Integer overflow in JsArrayFunctionHeapSort function used by Windows Script Engine for JScript JScript.dll on various Windows operating system allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail that uses a large array index value that enables a heap-based...

CVE-2003-0010

The CVE-2003-0010 issue is a heap-based overflow in the Windows Script Engine (JsArrayFunctionHeapSort in JScript.dll) that can allow remote code execution via a malicious web page or HTML e-mail. Affected component is Windows Script Engine/JScript.dll; exploit arises from handling large array in...

CVE-2003-0010

Integer overflow in JsArrayFunctionHeapSort function used by Windows Script Engine for JScript JScript.dll on various Windows operating system allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail that uses a large array index value that enables a heap-based...

iDEFENSE Security Advisory 03.19.03: Heap Overflow in Windows Script Engine

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 03.19.03: http://www.idefense.com/advisory/03.19.03.txt Heap Overflow in Windows Script Engine March 19, 2003 I. BACKGROUND Microsoft Corp.'s Windows Script Engine within the Windows operating system OS interprets and execut...

Windows Script Engine integer overflow

Integer overflow on array's sort function...

MS03-008: Flaw in Windows Script Engine (814078)

The remote host is vulnerable to a flaw in the Windows Script Engine, that provides Windows with the ability to execute script code. To exploit this flaw, an attacker would need to lure one user on this host to visit a rogue website or to send a user an HTML email with a malicious code in it. C...

Microsoft Security Bulletin MS03-008: Flaw in Windows Script Engine Could Allow Code Execution (814078)

-----BEGIN PGP SIGNED MESSAGE----- - ------------------------------------------------------------------- Title: Flaw in Windows Script Engine Could Allow Code Execution 814078 Date: 19 March 2003 Software: Microsoft Windows 98 Microsoft Windows 98 Second Edition Microsoft Windows Me Microsoft...