• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Microsoft JScript Memory Corruption Vulnerability

Microsoft JScript is prone to a remote memory-corruption vulnerability. This issue is due to the software's failure to properly execute certain HTML script content.

This issue allows remote attackers to execute arbitrary machine code in the context of applications that use the JScript component to render attacker-supplied script code.

Microsoft Internet Explorer and Outlook both use the affected component, allowing attackers to exploit this issue by sending HTML email or by coercing unsuspecting users to visit malicious websites.