CVE-2000-0329

Description

A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control" vulnerability.

Affected products

• Microsoft / ie4.0 – 4.0
• Microsoft / ie4.0 – 4.0
• Microsoft / ie4.0.1 – 4.0.1
• Microsoft / ie4.0.1 – 4.0.1
• Microsoft / ie4.0.1 – 4.0.1
• Microsoft / ie4.1 – 4.1
• Microsoft / ie4.1 – 4.1
• Microsoft / ie4.1 – 4.1
• Microsoft / ie5 – 5
• Microsoft / ie5.0 – 5.0
• Microsoft / ie5.0 – 5.0
• Microsoft / ie5.0 – 5.0
• Microsoft / internet_explorer4.0 – 4.0
• Microsoft / Outlook98 – 98
• Microsoft / Outlook2000 – 2000
• Microsoft / outlook_express4.27.3110.1 – 4.27.3110.1
• Microsoft / outlook_express4.72.2106.4 – 4.72.2106.4
• Microsoft / outlook_express4.72.3120.0 – 4.72.3120.0
• Microsoft / outlook_express4.72.3612.1700 – 4.72.3612.1700
• Microsoft / outlook_express5.0 – 5.0

References

• MISChttps://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-048