CVE-2000-0596

Description

Internet Explorer 5.x does not warn a user before opening a Microsoft Access database file that is referenced within ActiveX OBJECT tags in an HTML document, which could allow remote attackers to execute arbitrary commands, aka the "IE Script" vulnerability.

Related CPE's

Could not find any relations

References

20000627 IE 5 and Access 2000 vulnerability - executing programs

ExploitPatchVendor Advisory

20000627 FW: IE 5 and Access 2000 vulnerability - executing programs

CA-2000-16

US Government Resource

1398

MS00-049

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:N/AC:L/Au:N/C:P/I:P/A:P

AccessVector

NETWORK

AccessComplexity

LOW

Authentication

NONE

ConfidentialityImpact

PARTIAL

IntegrityImpact

PARTIAL

AvailabilityImpact

PARTIAL

BaseScore

7.5

Created by Yello
About Severity.io