CVE-2003-0010

Description

Integer overflow in JsArrayFunctionHeapSort function used by Windows Script Engine for JScript (JScript.dll) on various Windows operating system allows remote attackers to execute arbitrary code via a malicious web page or HTML e-mail that uses a large array index value that enables a heap-based buffer overflow attack.

Affected products

Microsoft / windows_2000
Microsoft / windows_2000
Microsoft / windows_2000
Microsoft / windows_2000
Microsoft / windows_2000_terminal_services
Microsoft / windows_2000_terminal_services
Microsoft / windows_2000_terminal_services
Microsoft / windows_2000_terminal_services
Microsoft / windows_98
Microsoft / windows_98se
Microsoft / windows_me
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_nt4.0 – 4.0
Microsoft / windows_xp
Microsoft / windows_xp
Microsoft / windows_xp

Description

Affected products

References