High Published: May 13, 2000 Modified: Apr 03, 2025

CVE-2000-0400

7.5 CVSS SCORE

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Description

The Microsoft Active Movie ActiveX Control in Internet Explorer 5 does not restrict which file types can be downloaded, which allows an attacker to download any type of file to a user's system by encoding it within an email message or news post.

CVSS Vector Details

Attack Vector Network

Attack Complexity Low

Confidentiality P

Integrity P

Availability P

Affected Software Configurations

a microsoft internet_explorer 5 * * * * * * *

Weaknesses (CWE)

CWE-20

References & External Links

http://marc.info/?l=bugtraq&m=95868514521257&w=2
http://www.securityfocus.com/bid/1221
http://marc.info/?l=bugtraq&m=95868514521257&w=2
http://www.securityfocus.com/bid/1221

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

← Back to CVE Tracker