MS14-084: Vulnerability in VBScript Scripting Engine Could Allow Remote Code Execution (3016711)
High Nessus Plugin ID 79833
SynopsisArbitrary code can be executed on the remote host through the installed VBScript Scripting Engine.
DescriptionThe installed version of the VBScript Scripting Engine is affected by a remote code execution vulnerability due to improper handling of objects in memory. By tricking a user into viewing or opening malicious content, an attacker can exploit this to execute arbitrary code on the affected system, subject to the user's privileges.
SolutionMicrosoft has released a set of patches for Windows 2003, Vista, 2008, 2008 R2, and 7.