CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2000-0767

The ActiveX control for invoking a scriptlet in Internet Explorer 4.x and 5.x renders arbitrary file types instead of HTML, which allows an attacker to read arbitrary files, aka the "Scriptlet Rendering" vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.126

EPSS Ranking 93.6%

CVSS Severity

CVSS v2 Score 2.6

References

http://www.securityfocus.com/bid/1564
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-055
http://www.securityfocus.com/bid/1564
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-055

Products affected by CVE-2000-0767

Microsoft » Internet Explorer » Version: 4.0

cpe:2.3:a:microsoft:internet_explorer:4.0
Microsoft » Internet Explorer » Version: 5.0

cpe:2.3:a:microsoft:internet_explorer:5.0
Microsoft » Internet Explorer » Version: 5.01

cpe:2.3:a:microsoft:internet_explorer:5.01
Microsoft » Internet Explorer » Version: 5.5

cpe:2.3:a:microsoft:internet_explorer:5.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2000-0767

Products

Pricing

Contact Us