Microsoft JScript and VBScript Engines Remote Code Execution Vulnerability (2706045)

This host is missing an important security update according to Microsoft Bulletin MS12-056. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Integer overflow

Multiple integer overflows in the Microsoft 1 JScript 5.6 through 5.8 and 2 VBScript 5.6 through 5.8 scripting engines allow remote attackers to execute arbitrary code via a crafted web page, aka "Scripting Memory Reallocation Vulnerability."...

Microsoft VBScript And JScript Scripting Engines Remote Code Execution Vulnerability

Description Microsoft VBScript and JScript scripting engines are prone to a remote code-execution vulnerability. Attackers can leverage this issue by enticing unsuspecting users to view a malicious webpage. Successful exploits would allow arbitrary code to run with the privileges of the currently...

Microsoft JScript脚本引擎Arguments关键字内存破坏漏洞（MS09-045）

BUGTRAQ ID: 36224 CVECAN ID: CVE-2009-1920 JScript是一种解释性的基于对象的脚本语言。 JScript脚本引擎（JScript.dll）处理网页中脚本的方式存在远程代码执行漏洞。在解析jscript arguments关键字时，由于arguments对象在某一时间之前不可用，调用该对象可能导致内存破坏。 如果用户打开了特制文件或访问了运行脚本的特制网站，这个漏洞可能允许远程执行指令。 Microsoft JScript 5.8 Microsoft JScript 5.7 Microsoft JScript 5.6 Microsoft...

Microsoft JScript Scripting Engine Keyword Arguments Remote Code Execution Vulnerability

Description Microsoft JScript is prone to a remote code-execution vulnerability because it fails to adequately handle user-supplied input. Attackers can leverage this issue by enticing unsuspecting users to view a malicious webpage. Successful exploits would allow arbitrary code to run with the...

Memory corruption

Microsoft JScript 5.1, 5.5, and 5.6 on Windows 2000 SP4, and 5.6 on Windows XP, Server 2003, Windows 98 and Windows Me, will "release objects early" in certain cases, which results in memory corruption and allows remote attackers to execute arbitrary code...

CVE-2006-1313

CVE-2006-1313 is the Microsoft JScript memory corruption remote code execution vulnerability documented in MS06-023. It affects JScript in Windows 98/Me, Windows 2000 SP4, Windows XP (incl. SP1/SP2), and Windows Server 2003 families, including x64/Itanium variants, where JScript may release objec...

Microsoft JScript (Internet Explorer) memory corruption

Memory corruption on objects release. May be used for hidden malware installation...

MS06-023: Vulnerability in Microsoft JScript Could Allow Remote Code Execution (917344)

The remote host is running a version of Windows that contains a flaw in JScript. An attacker may be able to execute arbitrary code on the remote host by constructing a malicious JScript and enticing a victim to visit a website or view a specially crafted email message. Tenable Network Security,...

Microsoft JScript memory corruption vulnerability

Overview Microsoft JScript contains a memory corruption vulnerability. This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Microsoft JScript According to Microsoft Security Bulletin MS06-023: JScript is the Microsoft...

814078: Security Update (Microsoft Jscript version 5.6, Windows 2000, Windows XP)

A security issue has been identified that could allow an attacker to run programs on a computer running Microsoft® Windows®. The attacker would first have to send you an e-mail message or entice you into visiting a malicious Web site. You can help protect your computer by installing this update...

814078: Security Update (Microsoft Jscript version 5.1, Windows 2000)

A security issue has been identified that could allow an attacker to run programs on a computer running Microsoft® Windows®. The attacker would first have to send you an e-mail message or entice you into visiting a malicious Web site. You can help protect your computer by installing this update...

Security Update for Jscript 5.6 for Windows XP (KB971961)

A security issue has been identified that could allow an unauthenticated remote attacker to compromise your system and gain control over it. You can help protect your system by installing this update from Microsoft. After you install this update, you may have to restart your system...