English
Russian
Japanese
LatAm
Türkiye
Brasil
France
Český
Deutschland
KLA10843
Code execution vulnerability in Microsoft JScript and VBScript engines
Обновлено: 22/05/2020
|
Дата обнаружения
|
12/07/2016 |
|
Уровень угрозы
|
High |
|
Описание
|
An improper objects handling was found in Microsoft JScript and VBScript. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Technical details To mitigate this vulnerability you can restrict access to VBScript.dll and JScript.dll. More detailed information about this workaround you can find at original advisory MS16-086 |
|
Пораженные продукты
|
Microsoft VBScript engine 5.7 and 5.8 |
|
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
|
Первичный источник обнаружения
|
CVE-2016-3204 |
|
Оказываемое влияние
?
|
ACE
[?]
OSI
[?]
SUI
[?]
|
|
Связанные продукты
|
Microsoft VBScript engine |
|
CVE-IDS
|
|
|
Microsoft official advisories
|
Microsoft Security Update Guide |
|
KB list
|
|