New Search

Scripting Engine Memory Corruption Vulnerability - CVE-2016-0002 (MS16-001)

oval:org.cisecurity:def:411

The Microsoft (1) VBScript 5.7 and 5.8 and (2) JScript 5.7 and 5.8 engines as used in Internet Explorer 8 through 11 and other products allow remote attackers to execute arbitrary code via a crafted web site aka "Scripting Engine Memory Corruption Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 7
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows Vista
  • Microsoft Windows 8.1
  • Microsoft Windows Server 2008
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows 8
Class:
vulnerability
Reference(s):
  • CVE-2016-0002
Product(s):
  • Microsoft VBScript 5.8
  • Microsoft JScript 5.8