[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248149

 
 

909

 
 

194803

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2008-0083Date: (C)2008-04-08   (M)2023-12-22


The (1) VBScript (VBScript.dll) and (2) JScript (JScript.dll) scripting engines 5.1 and 5.6, as used in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2, do not properly decode script, which allows remote attackers to execute arbitrary code via unknown vectors.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 9.3
Exploit Score: 8.6
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1019799
BID-28551
SECUNIA-29712
ADV-2008-1146
MS08-022
SSRT080048
TA08-099A
oval:org.mitre.oval:def:5495

CPE    9
cpe:/o:microsoft:windows_2000::sp4
cpe:/o:microsoft:windows_2003_server::sp1:itanium
cpe:/o:microsoft:windows_xp:::x64
cpe:/o:microsoft:windows_xp::sp2
...
CWE    1
CWE-94
OVAL    2
oval:org.secpod.oval:def:2664
oval:org.mitre.oval:def:5495

© SecPod Technologies