CVE-2008-0083

CRITICAL

9.3

CVSS Severity Score

EPSS Score0.0820%

EPSS Percentile31.11th

PublishedApr 8, 2008

Last ModifiedApr 23, 2026

Vulnerability Description

The (1) VBScript (VBScript.dll) and (2) JScript (JScript.dll) scripting engines 5.1 and 5.6, as used in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2, do not properly decode script, which allows remote attackers to execute arbitrary code via unknown vectors.

Affected Platforms (CPE)

💻

Microsoft

Windows 2000

All versions

💻

Microsoft

Windows 2003 Server

All versions

💻

Microsoft

Windows 2003 Server

All versions

💻

Microsoft

Windows 2003 Server

All versions

💻

Microsoft

Windows 2003 Server

All versions

💻

Microsoft

Windows 2003 Server

All versions

💻

Microsoft

Windows 2003 Server

All versions

💻

Microsoft

Windows Xp

All versions

💻

Microsoft

Windows Xp

All versions

💻

Microsoft

Windows Xp

All versions

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=120845064910729&w=2

🔗 http://secunia.com/advisories/29712

🔗 http://www.securityfocus.com/bid/28551

🔗 http://www.securitytracker.com/id?1019799

🔗 http://www.us-cert.gov/cas/techalerts/TA08-099A.html

🔗 http://www.vupen.com/english/advisories/2008/1146/references

🔗 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-022

🔗 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5495

Vulnerability Description

Affected Platforms (CPE)

Windows 2000

Windows 2003 Server

Windows 2003 Server

Windows 2003 Server

Windows 2003 Server

Windows 2003 Server

Windows 2003 Server

Windows Xp

Windows Xp

Windows Xp

References & Advisories

Related Vulnerabilities