Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0083

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-0083
Last Modified 07 Mar 2011 12:00:00
Published 08 Apr 2008 07:05:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-0083

Summary

The (1) VBScript (VBScript.dll) and (2) JScript (JScript.dll) scripting engines 5.1 and 5.6, as used in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2, do not properly decode script, which allows remote attackers to execute arbitrary code via unknown vectors.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows 2003 Server

  • Microsoft Windows Xp


References

CERT - TA08-099A

BID - 28551

MS - MS08-022

VUPEN - ADV-2008-1146

SECTRACK - 1019799

SECUNIA - 29712

HP - SSRT080048

HP - HPSBST02329


Last Updated: 27 May 2016 10:46:40