Vulnerabilities > CVE-2000-0596 - Unspecified vulnerability in Microsoft Internet Explorer 4.0.1/5

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

microsoft

NVD

Published: 2000-06-27

Updated: 2023-11-07

Summary

Internet Explorer 5.x does not warn a user before opening a Microsoft Access database file that is referenced within ActiveX OBJECT tags in an HTML document, which could allow remote attackers to execute arbitrary commands, aka the "IE Script" vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Internet Explorer 5 Microsoft Internet Explorer 4.0.1	2

References

http://www.cert.org/advisories/CA-2000-16.html
http://www.securityfocus.com/bid/1398
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-049
http://www.securityfocus.com/templates/archive.pike?list=1&msg=000d01bfe0fb%24418f59b0%2496217aa8%40src.bu.edu
http://www.securityfocus.com/templates/archive.pike?list=1&msg=39589359.762392DB%40nat.bg