(MS15-019) Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution (3040297)
Severity: CRITICAL
CVE Identifier: CVE-2015-0032
Advisory Date: APR 02, 2015
DESCRIPTION
This security update resolves a remote code execution vulnerability present in the scripting engine VBScript 5.6, 5.7, and 5.8. Attackers wanting to exploit this vulnerability may set up a website that when accessed, exploits said vulnerability. Users with less rights on a vulnerable computer are less impacted by this vulnerability.
SOLUTION
AFFECTED SOFTWARE AND VERSION
- VBScript 5.6
- VBScript 5.7
- VBScript 5.8