Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0596

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2000-0596
Last Modified 10 Sep 2008 03:05:10
Published 27 Jun 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0596

Summary

Internet Explorer 5.x does not warn a user before opening a Microsoft Access database file that is referenced within ActiveX OBJECT tags in an HTML document, which could allow remote attackers to execute arbitrary commands, aka the "IE Script" vulnerability.

Vulnerable Systems

Application

  • Microsoft Ie 4.0.1

  • Microsoft Ie 5


References

CERT - CA-2000-16

BUGTRAQ - 20000627 IE 5 and Access 2000 vulnerability - executing programs

MS - MS00-049

BUGTRAQ - 20000627 FW: IE 5 and Access 2000 vulnerability - executing programs

BID - 1398


Last Updated: 27 May 2016 10:35:47