High Published: Feb 21, 2000 Modified: Apr 03, 2025

CVE-2000-0160

7.6 CVSS SCORE

Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C

Description

The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without prompting the user by stating that the software's manufacturer is Microsoft.

CVSS Vector Details

Attack Vector Network

Attack Complexity High

Confidentiality C

Integrity C

Availability C

Affected Software Configurations

a microsoft ie 4.x * * * * * * *
a microsoft internet_explorer 5 * * * * * * *
a microsoft outlook * * * * * * * *

Weaknesses (CWE)

NVD-CWE-Other

References & External Links

http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=20000221103938.T21312%40securityfocus.com
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=20000221103938.T21312%40securityfocus.com

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

← Back to CVE Tracker