Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:STC:IE:MAL-VB-JSCRIPT

Severity

 Medium

Recommended

 No

Category

 HTTP

Keywords

 Microsoft Internet Explorer Malformed VBScript/JScript

Release Date

 2011/02/07

Update Number

 1861

Supported Platforms

 idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Microsoft Internet Explorer Malformed VBScript/JScript


This signature detects attempts to exploit a known vulnerability in Microsoft Internet Explorer's Jscript and VBscript Engines. A successful attack can result in information disclosure.

Extended Description

Microsoft VBScript and JScript scripting engines are prone to a remote information-disclosure vulnerability. Attackers can exploit this issue to gain access to sensitive information that may aid in further attacks. Attackers can exploit this issue by enticing an unsuspecting user to visit a specially crafted webpage.

Affected Products

  • Avaya Aura Conferencing 6.0 SP1 Standard
  • Avaya Aura Conferencing 6.0 Standard
  • Microsoft JScript 5.8
  • Microsoft VBScript 5.8

References

  • BugTraq: 46139
  • CVE: CVE-2011-0031

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out