CVE-2000-0464 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft Internet Explorer
3 documents3 sources
Severity
7.6HIGHNVD
EPSS
15.1%
top 5.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMay 17
Latest updateApr 30
Description
Internet Explorer 4.x and 5.x allows remote attackers to execute arbitrary commands via a buffer overflow in the ActiveX parameter parsing capability, aka the "Malformed Component Attribute" vulnerability.
CVSS vector
AV:N/AC:H/C:C/I:C/A:CExploitability: 4.9 | Impact: 10.0