CVE Vulnerabilities

CVE-2000-0767

Published: Oct 20, 2000 | Modified: Jul 23, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.6 LOW
AV:N/AC:H/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

The ActiveX control for invoking a scriptlet in Internet Explorer 4.x and 5.x renders arbitrary file types instead of HTML, which allows an attacker to read arbitrary files, aka the Scriptlet Rendering vulnerability.

Affected Software

Name Vendor Start Version End Version
Internet_explorer Microsoft 4.0 4.0
Internet_explorer Microsoft 5.5 5.5
Internet_explorer Microsoft 5.0 5.0
Internet_explorer Microsoft 5.01 5.01

References