Multiple integer overflows in the Microsoft (1) JScript 5.6 through 5.8 and (2) VBScript 5.6 through 5.8 scripting engines allow remote attackers to execute arbitrary code via a crafted web page, aka "Scripting Memory Reallocation Vulnerability."
Weaknesses in this category are related to improper calculation or conversion of numbers.
The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.
| Link | Tags |
|---|---|
| http://www.vupen.com/english/advisories/2011/0949 | vdb entry |
| http://osvdb.org/71774 | vdb entry |
| http://www.us-cert.gov/cas/techalerts/TA11-102A.html | third party advisory us government resource |
| http://www.securitytracker.com/id?1025333 | vdb entry |
| https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-031 | vendor advisory |
| http://www.securityfocus.com/bid/47249 | vdb entry |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12673 | signature vdb entry |
| http://secunia.com/advisories/44162 | third party advisory |