(MS15-019) Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution (3040297)
Publish Date: 02 avril 2015
Gravité: : Critique
Identifiant(s) CVE: : CVE-2015-0032
Date du conseil: 02 avril 2015
Description
This security update resolves a remote code execution vulnerability present in the scripting engine VBScript 5.6, 5.7, and 5.8. Attackers wanting to exploit this vulnerability may set up a website that when accessed, exploits said vulnerability. Users with less rights on a vulnerable computer are less impacted by this vulnerability.
Solutions
Affected software and version:
- VBScript 5.6
- VBScript 5.7
- VBScript 5.8