CVE-2000-1061

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
11/12/2000
Last modified:
03/04/2025

Description

Microsoft Virtual Machine (VM) in Internet Explorer 4.x and 5.x allows an unsigned applet to create and use ActiveX controls, which allows a remote attacker to bypass Internet Explorer's security settings and execute arbitrary commands via a malicious web page or email, aka the "Microsoft VM ActiveX Component" vulnerability.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:microsoft:ie:4.x:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:ie:5.x:*:*:*:*:*:*:*