CVE-2000-0400

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published May 13, 2000

Updated: Nov 20, 2024

CWE ID 20

Summary

CVE-2000-0400 is a vulnerability affecting the Microsoft Active Movie ActiveX Control used in Internet Explorer 5. This issue allows malicious actors to trick users into downloading any file type, despite restrictions, by embedding the file within an email message or news post. The lack of proper file type validation exposes users to potential security risks, such as executable files disguised as harmless content. This vulnerability, if exploited, could lead to system compromise or data theft.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft Internet Explorer

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlYqv
https://www.cve.org/CVERecord?id=CVE-2000-0400
https://nvd.nist.gov/vuln/detail/CVE-2000-0400

Back to Vulnerability Database