ActiveX Control Vulnerability in Office 2000 by Microsoft
CVE-2000-0419

Currently unrated

Key Information:

Vendor: Microsoft
Status: Access; Outlook; Powerpoint; Photodraw 2000
Vendor: CVE Published:; 11 May 2000

Summary

The Office 2000 UA ActiveX Control is erroneously flagged as 'safe for scripting', enabling remote attackers to exploit the 'Show Me' feature in Office Help. This flaw can lead to unauthorized access and manipulation of system resources. Users of Office 2000 are advised to review security updates and apply necessary patches to mitigate the risks associated with this vulnerability. For detailed information, refer to the relevant Microsoft security advisories.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.securityfocus.com/bid/1197

vdb-entryx_refsource_BID

http://www.microsoft.com/technet/support/kb.asp?ID=262767

vendor-advisoryx_refsource_MSKB

EPSS Score

10% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Jun 14, 2000
Vulnerability published
May 11, 2000