CVE-2003-0010 Information

Feb 14, 2021 cve

Description

Integer overflow in JsArrayFunctionHeapSort function used by Windows Script Engine for JScript (JScript.dll) on various Windows operating system allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail that uses a large array index value that enables a heap-based buffer overflow attack.

Reference

http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0139.html http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=26 http://marc.info/?l=bugtraq&m=104812108307645&w=2 http://www.securityfocus.com/bid/7146 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-008 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A134 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A200 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A794 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A795

Share on: