Vulnerability in Microsoft Windows_2000

CVE-2003-0010

Integer overflow in JsArrayFunctionHeapSort function used by Windows Script Engine for JScript (JScript.dll) on various Windows operating system allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail that…

EPSS: 0.239 (97.5th percentile) — read the EPSS interpretation.

Affected products

Microsoft Windows_2000
Microsoft Windows_2000_terminal_services
Microsoft Windows_98
Microsoft Windows_98se
Microsoft Windows_me
Microsoft Windows_nt — versions 4.0
Microsoft Windows_xp
N/a — versions n/a

References

cve@mitre.org (Patch, vdb-entry, x_refsource_BID, Vendor Advisory)
cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
cve@mitre.org (x_refsource_IDEFENSE, third-party-advisory)
cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
cve@mitre.org (x_refsource_MS, vendor-advisory)
cve@mitre.org (mailing-list, x_refsource_VULNWATCH)
cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)