CVE-2000-0201
First published: Wed Mar 01 2000(Updated: )
The window.showHelp() method in Internet Explorer 5.x does not restrict HTML help files (.chm) to be executed from the local host, which allows remote attackers to execute arbitrary commands via Microsoft Networking.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Internet Explorer | =5.01 | |
| Internet Explorer | =5.0 | |
| =5.0 | ||
| =5.01 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2000-0201?
CVE-2000-0201 is considered a high-severity vulnerability due to its potential for remote command execution.
How do I fix CVE-2000-0201?
To fix CVE-2000-0201, it is recommended to upgrade to a newer version of Internet Explorer that does not have this vulnerability.
What systems are affected by CVE-2000-0201?
CVE-2000-0201 specifically affects Internet Explorer 5.0 and 5.01 versions.
Can CVE-2000-0201 be exploited remotely?
Yes, CVE-2000-0201 can be exploited remotely, allowing attackers to execute arbitrary commands on the affected system.
Is there a workaround for CVE-2000-0201?
A possible workaround for CVE-2000-0201 is to disable the use of the window.showHelp() method or to limit the execution of local help files.
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/references
- agent/severity
- agent/description
- agent/last-modified-date
- agent/author
- agent/event
- agent/source
- collector/nvd-historical
- agent/software-canonical-lookup-request
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- collector/nvd-api
- source/NVD
- vendor/microsoft
- canonical/internet explorer
- version/internet explorer/5.01
- version/internet explorer/5.0