Microsoft JScript 5.1, 5.5, and 5.6 on Windows 2000 SP4, and 5.6 on Windows XP, Server 2003, Windows 98 and Windows Me, will release objects early in certain cases, which results in memory corruption and allows remote attackers to execute arbitrary code.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Windows_2000 | Microsoft | * | * |
| Windows_2003_server | Microsoft | datacenter_edition (including) | datacenter_edition (including) |
| Windows_2003_server | Microsoft | datacenter_edition-sp1 (including) | datacenter_edition-sp1 (including) |
| Windows_2003_server | Microsoft | datacenter_edition_64-bit (including) | datacenter_edition_64-bit (including) |
| Windows_2003_server | Microsoft | datacenter_edition_64-bit-sp1 (including) | datacenter_edition_64-bit-sp1 (including) |
| Windows_2003_server | Microsoft | enterprise_64-bit (including) | enterprise_64-bit (including) |
| Windows_2003_server | Microsoft | enterprise_edition-sp1 (including) | enterprise_edition-sp1 (including) |
| Windows_2003_server | Microsoft | enterprise_edition_64-bit (including) | enterprise_edition_64-bit (including) |
| Windows_2003_server | Microsoft | enterprise_edition_64-bit-sp1 (including) | enterprise_edition_64-bit-sp1 (including) |
| Windows_2003_server | Microsoft | r2 (including) | r2 (including) |
| Windows_2003_server | Microsoft | sp1 (including) | sp1 (including) |
| Windows_2003_server | Microsoft | standard (including) | standard (including) |
| Windows_2003_server | Microsoft | standard-sp1 (including) | standard-sp1 (including) |
| Windows_2003_server | Microsoft | standard_64-bit (including) | standard_64-bit (including) |
| Windows_2003_server | Microsoft | web (including) | web (including) |
| Windows_2003_server | Microsoft | web-sp1 (including) | web-sp1 (including) |
| Windows_98 | Microsoft | * | * |
| Windows_98se | Microsoft | * | * |
| Windows_me | Microsoft | * | * |
| Windows_xp | Microsoft | * | * |