CVE-2008-0083 Information

Description

The (1) VBScript (VBScript.dll) and (2) JScript (JScript.dll) scripting engines 5.1 and 5.6 as used in Microsoft Windows 2000 SP4 XP SP2 and Server 2003 SP1 and SP2 do not properly decode script which allows remote attackers to execute arbitrary code via unknown vectors.

Reference

http://marc.info/?l=bugtraq&m=120845064910729&w=2 http://secunia.com/advisories/29712 http://www.securityfocus.com/bid/28551 http://www.securitytracker.com/id?1019799 http://www.us-cert.gov/cas/techalerts/TA08-099A.html http://www.vupen.com/english/advisories/2008/1146/references https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-022 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A5495