Code Execution Vulnerability in Windows Script Engine - 27 Mar 2003

If you're running SQL Server on Windows, you need to know that a new vulnerability in Windows Script Engine can result in the execution of arbitrary code on the vulnerable system. This vulnerability stems from a flaw in the way Windows Script Engine for JScript processes information. Microsoft has released Security Bulletin MS03-008, "Flaw in Windows Script Engine Could Allow Code Execution (814078)," to address this vulnerability and recommends that affected users immediately apply the appropriate patch mentioned in the bulletin. You can get more information about the vulnerability and link to download sites at http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/ms03-008.asp .

TAGS: Security
Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish