Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2000-0325

5 documents5 sources
Severity
7.2HIGH
EPSS
7.0%
top 8.49%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft JET
Timeline
PublishedAug 20
Latest updateApr 30

Description

The Microsoft Jet database engine allows an attacker to execute commands via a database query, aka the "VBA Shell" vulnerability.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDmicrosoft/jet3.5, 3.5.1+1

🔴Vulnerability Details

3
GHSA
GHSA-m238-53hv-gp98: The Microsoft Jet database engine allows an attacker to execute commands via a database query, aka the "VBA Shell" vulnerability2022-04-30
CVEList
CVE-2000-0325: The Microsoft Jet database engine allows an attacker to execute commands via a database query, aka the "VBA Shell" vulnerability2000-05-18
VulnCheck
Microsoft Jet Database Engine VBA Shell Vulnerability2000

💥Exploits & PoCs

1
Exploit-DB
Microsoft JET 3.5/3.51/4.0 - VBA Shell1999-07-29
CVE-2000-0325 (HIGH CVSS 7.2) | The Microsoft Jet database engine a | cvebase.io