CVE-2000-0160

The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without prompting the user by stating that the software's manufacturer is Microsoft.

Published: Feb 21, 2000
Updated: Apr 13, 2023
CVE: CVE-2000-0160
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.6
AV:N/AC:H/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / internet_explorer	5	5.x
microsoft / ie	4.x	4.x.x
microsoft / outlook	-	-

http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&[email protected]
http://www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=20000221103938.T21312%40securityfocus.com

Vulnerability Database

289,599

CVE-2000-0160