Family: Windows : Microsoft Bulletins --> Category: infos
Flaw in Windows Script Engine (Q814078) Vulnerability Scan
Vulnerability Scan Summary
Checks for MS Hotfix Q814078
Detailed Explanation for this Vulnerability Test
Arbitrary code can be executed on the remote host through the web client.
The remote host is vulnerable to a flaw in the Windows Script Engine,
which provides Windows with the ability to execute script code.
To exploit this flaw, a possible hacker would need to lure one user on this
host to visit a rogue website or to send him an HTML e-mail with a
malicious code in it.
Microsoft has released a set of patches for Windows NT, 2000 and XP :
Medium / CVSS Base Score : 6
Click HERE for more information and discussions on this network vulnerability scan.