VDB
CVE-2000-1034
CVE-2000-1034
PUBLISHED
CVSS 10 CRITICAL
Buffer overflow in the System Monitor ActiveX control in Windows 2000 allows remote attackers to execute arbitrary commands via a long LogFileName parameter in HTML source code, aka the "ActiveX Parameter Validation" vulnerability.
EPSS 22.08% · 95.9th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
22.08%
95.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| microsoft | windows_2000 |
Exploit Intelligence
- system-monitor-activex-bo(5467) (circl)
- 20001106 System Monitor ActiveX Buffer Overflow Vulnerability (circl)
- MS00-085 (circl)
- http://www.securityfocus.com/bid/1899 (vulncheck-nvd)
Timeline
- Dec 11, 2000 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 27, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
- Oct 31, 2023 EPSS Score
References
- system-monitor-activex-bo(5467) vdb
- 20001106 System Monitor ActiveX Buffer Overflow Vulnerability mailing-list
- MS00-085 vendor-advisory
- 1899 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2000-1034 advisory