Skip to main content

Microsoft Windows Scripting Engines Information Disclosure Vulnerability( 09 February 2011 )

Last Update Date: 11 Feb 2011 Release Date: 9 Feb 2011 6083 Views

RISK: Medium Risk

TYPE: Operating Systems - Windows OS

TYPE: Windows OS

An information disclosure vulnerability exists in the JScript and VBScript scripting engines due to a memory corruption error. An attacker who successfully exploited this vulnerability could read data not intended to be disclosed. Note that this vulnerability would not allow an attacker to execute code or to elevate their user rights directly, but it could be used to obtain information that could be used to try to further compromise the affected system.


Impact

  • Information Disclosure

System / Technologies affected

  • JScript 5.8
  • VBScript 5.8
  • Windows 7
  • Windows Server 2008

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Download locations for this patch


Vulnerability Identifier


Source


Related Link