Alvin Ng

**Name of the Vulnerable Software and Affected Versions** Artifex MuJS versions 1.0.0 through 1.3.1 **Description** A logical issue in the `O getOwnPropertyDescriptor()` function allows an attacker to achieve Remote Code Execution through memory corruption, via the loading of a crafted JavaScript file. **Recommendations** For Artifex MuJS versions 1.0.0 through 1.3.1, update to version 1.3.2 or later to resolve the issue. As a temporary workaround, consider restricting the loading of external JavaScript files to minimize the risk of exploitation.