CVE-2000-0160

Published: Feb 21, 2000Modified: Apr 16, 2026

7.6

Vector

AV:N/AC:H/Au:N/C:C/I:C/A:C

Exploitability: 4.9 / Impact: 10.0

Source: NVD

Description

The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without prompting the user by stating that the software's manufacturer is Microsoft.

Affected (3)

Products: Microsoft: Ie, Internet Explorer, Outlook

Microsoft

3 products

Internet Explorer

Outlook

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Microsoft Ie	Version 4.x
Microsoft Internet Explorer	Version 5
Microsoft Outlook	All versions

References (2)

http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=20000221103938.T21312%40securityfocus.com

Source: cve@mitre.org

http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=20000221103938.T21312%40securityfocus.com

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.