Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0419

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2000-0419
Last Modified 10 Sep 2008 03:04:37
Published 11 May 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0419

Summary

The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activities via the "Show Me" function in Office Help, aka the "Office 2000 UA Control" vulnerability.

Vulnerable Systems

Application

  • Microsoft Access 2000

  • Microsoft Excel 2000

  • Microsoft Frontpage 2000

  • Microsoft Office 2000

  • Microsoft Outlook 2000

  • Microsoft Photodraw 2000 1.0

  • Microsoft Powerpoint 2000

  • Microsoft Project 2000

  • Microsoft Word 2000

  • Microsoft Works 2000


References

CERT - CA-2000-07

MS - MS00-034

BID - 1197

MSKB - Q262767


Last Updated: 27 May 2016 10:35:42