| Revision Date: | 2011-01-31 | Version: | 45 |
| Title: | Windows Script Engine Heap Overflow (Test 4) |
| Description: | Integer overflow in JsArrayFunctionHeapSort function used by Windows Script Engine for JScript (JScript.dll) on various Windows operating system allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail that uses a large array index value that enables a heap-based buffer overflow attack. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2003-0010
|
| Platform(s): | Microsoft Windows 2000
| Product(s): | Windows Script Engine for Jscript
|
| Definition Synopsis |
| detected unpatched jscript.dll v5.1 Jscript.dll for JScript 5.1 or later is installed
AND the version of jscript.dll is less than 5.1.0.8513
OR detected unpatched jscript.dll v5.5
the version of Jscript.dll is greater than or equal to 5.5.0.0
AND the version of jscript.dll is less than 5.5.0.8513
OR detected unpatched jscript.dll v5.6
the version of Jscript.dll is greater than or equal to 5.6.0.0
AND the version of jscript.dll is less than 5.6.0.8513
|