Lucene search
K

100 matches found

CNVD
CNVD
added 2015/10/15 12:0 a.m.4 views

Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CNVD-2015-06660)

Internet Explorer is a web browser from Microsoft. A security vulnerability exists in the implementation of Internet Explorer 8-11 and other products, VBScript 5.7/5.8, and JScript 5.7/5.8 engines. A remote attacker can exploit this vulnerability to execute arbitrary code or cause a denial of...

9.3CVSS7.7AI score0.25081EPSS
Exploits0References1
CNVD
CNVD
added 2015/10/15 12:0 a.m.4 views

Microsoft Internet Explorer Scripting Engine Information Disclosure Vulnerability (CNVD-2015-06662)

Internet Explorer is a web browser from Microsoft. A security vulnerability exists in the implementation of Internet Explorer 8-11 and other products, VBScript 5.7/5.8, and JScript 5.7/5.8 engines. A remote attacker could exploit this vulnerability to obtain sensitive information about process...

4.3CVSS6.5AI score0.16331EPSS
Exploits0References1
NVD
NVD
added 2015/10/14 1:59 a.m.44 views

CVE-2015-2482

The Microsoft 1 VBScript 5.7 and 5.8 and 2 JScript 5.7 and 5.8 engines, as used in Internet Explorer 8 through 11 and other products, allow remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted replace operation with a JavaScript regular expressio...

9.3CVSS7.5AI score0.32285EPSS
Exploits3References6
Microsoft KB
Microsoft KB
added 2015/05/12 12:0 a.m.47 views

MS15-053: Vulnerabilities in JScript and VBScript scripting engines could allow security feature bypass: May 12, 2015

This security update resolves ASLR security feature bypasses in the JScript and VBScript scripting engines in Microsoft Windows.SummaryThis security update resolves address space layout randomization ASLR security feature bypasses in the JScript and VBScript scripting engines in Microsoft Windows...

4.3CVSS6.7AI score0.16265EPSS
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

PHP 5.3.4 Win Com Module Com_sink Exploit

No description provided by source. Exploit Title: PHP 5.3.4 Win Com Module Comsink Local Exploit Google Dork: Nil Date: 9/10/2012 Author: FB1H2S Software Link: PHP Windows Version: 5.3.4 Tested on: Microsoft XP Pro 2002 SP2 ?php //PHP 5.3.4 // //$eip =\x44\x43\x42\x41; $eip= \x4b\xe8\x57\x78; $ea...

7.1AI score
Exploits0
0day.today
0day.today
added 2012/10/10 12:0 a.m.17 views

PHP 5.3.4 com_event_sink 0-Day

Exploit for php platform in category local exploits 0day.today 2018-04-05...

6.8AI score
Exploits0
Packet Storm
Packet Storm
added 2012/10/09 12:0 a.m.36 views

PHP 5.3.4 com_event_sink 0-Day

...

0.1AI score
Exploits0
Symantec
Symantec
added 2012/08/14 12:0 a.m.34 views

Microsoft VBScript And JScript Scripting Engines Integer Overflow Code Execution Vulnerability

Description Microsoft VBScript and JScript scripting engines are prone to a remote code-execution vulnerability due to an integer-overflow error. Attackers can leverage this issue by enticing unsuspecting users to view a malicious webpage. Successful exploits would allow arbitrary code to run wit...

0.3AI score
Exploits0Affected Software3
CVE
CVE
added 2011/04/13 6:0 p.m.63 views

CVE-2011-0663

CVE-2011-0663 concerns multiple integer overflow vulnerabilities in Microsoft JScript 5.6–5.8 and VBScript 5.6–5.8 scripting engines. A crafted web page can trigger memory corruption, allowing remote attackers to execute arbitrary code on affected Windows systems. Affected components include JScr...

9.3CVSS7.2AI score0.26221EPSS
Exploits0References8Affected Software2
Vulnrichment
Vulnrichment
added 2011/04/13 6:0 p.m.10 views

CVE-2011-0663

Multiple integer overflows in the Microsoft 1 JScript 5.6 through 5.8 and 2 VBScript 5.6 through 5.8 scripting engines allow remote attackers to execute arbitrary code via a crafted web page, aka "Scripting Memory Reallocation Vulnerability."...

7.3AI score0.26221EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2011/04/13 12:0 a.m.4 views

PT-2011-2540 · Microsoft · Jscript +1

Name of the Vulnerable Software and Affected Versions: Microsoft JScript versions 5.6 through 5.8 Microsoft VBScript versions 5.6 through 5.8 Description: The issue is related to multiple integer overflows in the scripting engines, which allow remote attackers to execute arbitrary code via a...

9.3CVSS7.4AI score0.26221EPSS
Exploits0References10
OpenVAS
OpenVAS
added 2011/04/13 12:0 a.m.26 views

Microsoft JScript and VBScript Scripting Engines Remote Code Execution Vulnerability (2514666)

This host is missing a critical security update according to Microsoft Bulletin MS11-031. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5AI score0.26221EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2011/04/13 12:0 a.m.30 views

MS11-031: Vulnerability in JScript and VBScript Scripting Engines Could Allow Remote Code Execution (2514666)

The installed version of the JScript and VBScript scripting engines contains an integer overflow vulnerability that can occur when the scripting engines process a script in a web page and attempt to reallocate memory while decoding the script. If an attacker can trick a user on the affected syste...

9.3CVSS5.6AI score0.26221EPSS
Exploits0References2
Microsoft KB
Microsoft KB
added 2011/04/12 12:0 a.m.36 views

MS11-031: Description of the security update for the JScript and VBScript v5.8 scripting engines: April 12, 2011

None None...

5.3AI score
Exploits0
OpenVAS
OpenVAS
added 2011/02/09 12:0 a.m.33 views

Microsoft JScript and VBScript Scripting Engines Information Disclosure Vulnerability (2475792)

This host is missing a critical security update according to Microsoft Bulletin MS11-009. OpenVAS Vulnerability Test $Id: secpodms11-009.nasl 6526 2017-07-05 05:43:52Z cfischer $ Microsoft JScript and VBScript Scripting Engines Information Disclosure Vulnerability 2475792 Authors: Madhuri D...

4.3CVSS6.5AI score0.17026EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2011/02/09 12:0 a.m.15 views

Microsoft JScript and VBScript Scripting Engines Information Disclosure Vulnerability (2475792)

This host is missing a critical security update according to Microsoft Bulletin MS11-009. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

4.3CVSS5.1AI score0.17026EPSS
Exploits0References3
seebug.org
seebug.org
added 2008/04/11 12:0 a.m.42 views

Microsoft VBScript和JScript脚本引擎远程溢出漏洞(MS08-022)

BUGTRAQ ID: 28551 CVECAN ID: CVE-2008-0083 Microsoft Windows是微软发布的非常流行的操作系统。 Windows的VBScript和JScript脚本引擎在处理畸形数据时存在漏洞,远程攻击者可能利用此漏洞控制用户系统。 Windows的VBScript和JScript脚本引擎在解码网页中的脚本时允许脚本加载到内存中运行,这可能导致缓冲区溢出。如果用户打开了特制文件或访问正在运行特制脚本的网站,则此漏洞可能允许远程执行代码。 Microsoft VBScript/JScript 5.1 - Microsoft Windows 2000...

9.3CVSS6.5AI score0.29963EPSS
Exploits1
NVD
NVD
added 2008/04/08 11:5 p.m.21 views

CVE-2008-0083

The 1 VBScript VBScript.dll and 2 JScript JScript.dll scripting engines 5.1 and 5.6, as used in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2, do not properly decode script, which allows remote attackers to execute arbitrary code via unknown vectors...

9.3CVSS7.1AI score0.29963EPSS
Exploits1References8
Cvelist
Cvelist
added 2008/04/08 11:0 p.m.25 views

CVE-2008-0083

The 1 VBScript VBScript.dll and 2 JScript JScript.dll scripting engines 5.1 and 5.6, as used in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2, do not properly decode script, which allows remote attackers to execute arbitrary code via unknown vectors...

7.1AI score0.29963EPSS
Exploits1References8
Check Point Advisories
Check Point Advisories
added 2008/04/08 12:0 a.m.16 views

Microsoft Windows Scripting Engines Script Encoding Code Execution (MS08-022; CVE-2008-0083)

VBScript stands for Microsoft Visual Basic Scripting Edition that includes Web client scripting in Microsoft Internet Explorer and Web server scripting in Microsoft Internet Information Service. JScript is the Microsoft implementation of the ECMA 262 language specification ECMAScript Edition 3. T...

9.3CVSS6.4AI score0.29963EPSS
Exploits1
Rows per page
Query Builder