2 matches found
JScript Scripting Engine Web Pages Decoding Code Execution (MS09-045; CVE-2009-1920)
JScript is an interpreted, object-based scripting language that is often used to make Web sites more flexible or interactive. A remote code execution vulnerability has been reported in the way that the JScript scripting engine decodes script in Web pages. The vulnerability is due to a memory...
MS09-045: Vulnerability in JScript Scripting Engine Could Allow Remote Code Execution (971961)
The remote host is running a version of Windows that contains a flaw in its JScript scripting engine. An attacker may be able to execute arbitrary code on the remote host by constructing a malicious JScript and enticing a victim to visit a web site or view a specially crafted email message. C...