(MS15-019) Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution (3040297)

  Severity: CRITICAL
  CVE Identifier: CVE-2015-0032
  Advisory Date: APR 02, 2015

  DESCRIPTION

This security update resolves a remote code execution vulnerability present in the scripting engine VBScript 5.6, 5.7, and 5.8. Attackers wanting to exploit this vulnerability may set up a website that when accessed, exploits said vulnerability. Users with less rights on a vulnerable computer are less impacted by this vulnerability.

  SOLUTION

  AFFECTED SOFTWARE AND VERSION

  • VBScript 5.6
  • VBScript 5.7
  • VBScript 5.8

Featured Stories