Microsoft Windows Server 2025 JScript Engine Use-After-Free Remote Code Execution (CVE-2025-30397)
A Use-After-Free vulnerability in the JScript engine of Internet Explorer on Windows Server 2025 allows remote attackers to execute arbitrary code through a specially crafted webpage. This article demonstrates a proof-of-concept exploit that launches calc.exe to confirm code execution.