Flaw in Windows Script May Allow Code to Run

By Thomas McGuire on March 19, 2003, 5:10 PM
An attacker may exploit a vulnerability in Windows Script Engine by constructing a Web page that, when visited by a user, runs code of the attacker’s choice with user credentials. The attacker can host the Web page on a Web site or send the page directly to the user by e-mail.

Affected Software;
Windows XP
Windows 2000
Windows NT 4.0, Windows NT 4.0 Terminal Server Edition
Windows Millennium Edition
Windows 98 Second Edition & Windows 98

Download Patch now from Microsoft.

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.