HighMicrosoft Windows Knowledge Base Article 944338 update is not installed on the system, which could allow an attacker to exploit the following vulnerability:
The Microsoft Windows VBScript (VBScript.dll) and JScript (JScript.dll) scripting engines could allow a remote attacker to execute arbitrary code on the system, caused by a vulnerability regarding the decoding of scripts within a Web page. By persuading a victim to visit a malicious Web page, a remote attacker could exploit this vulnerability to execute arbitrary code on the system.
Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS08-022. See References.
Microsoft Security Bulletin MS08-022
Vulnerability in VBScript and JScript Scripting Engines Could Allow Remote Code Execution (944338)
http://www.microsoft.com/technet/security/bulletin/ms08-022.mspx
IBM Internet Security Systems X-Force Database
Microsoft Windows VBScript and JScript engines code execution
http://xforce.iss.net/xforce/xfdb/40056
ISS X-Force
Microsoft Windows Knowledge Base Article 944338 update not installed
http://www.iss.net/security_center/static/40059.php
CVE CVE-2008-0083
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0083
