Back to search
CVE-2011-0031
Published: Feb 9, 2011
Modified: Aug 6, 2024
PUBLISHED
Description
The (1) JScript 5.8 and (2) VBScript 5.8 scripting engines in Microsoft Windows Server 2008 R2 and Windows 7 do not properly load decoded scripts obtained from web pages, which allows remote attackers to trigger memory corruption and consequently obtain sensitive information via a crafted web site, aka "Scripting Engines Information Disclosure Vulnerability."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
MS11-009
vendor-advisory
x_refsource_MS
46139
vdb-entry
x_refsource_BID
ms-win-jscript-info-disclosure(64919)
vdb-entry
x_refsource_XF
1025044
vdb-entry
x_refsource_SECTRACK
43249
third-party-advisory
x_refsource_SECUNIA
70827
vdb-entry
x_refsource_OSVDB
ADV-2011-0322
vdb-entry
x_refsource_VUPEN
oval:org.mitre.oval:def:12313
vdb-entry
signature
x_refsource_OVAL
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now