CVE-2000-0790
First published: Fri Oct 20 2000(Updated: )
The web-based folder display capability in Microsoft Internet Explorer 5.5 on Windows 98 allows local users to insert Trojan horse programs by modifying the Folder.htt file and using the InvokeVerb method in the ShellDefView ActiveX control to specify a default execute option for the first file that is listed in the folder.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows 2000 | ||
| Microsoft Windows 98SE | ||
| Microsoft Windows 98 | =gold |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2000-0790?
CVE-2000-0790 is considered a moderate security vulnerability that allows local users to run unauthorized programs.
How do I fix CVE-2000-0790?
To fix CVE-2000-0790, update your Microsoft Internet Explorer to a newer version or apply patches provided by Microsoft.
Who is impacted by CVE-2000-0790?
CVE-2000-0790 affects local users on systems running Microsoft Windows 98 and Windows 2000 with Internet Explorer 5.5.
What type of attack does CVE-2000-0790 enable?
CVE-2000-0790 enables local users to insert and run Trojan horse programs due to improper handling of the Folder.htt file.
Is CVE-2000-0790 a remote or local vulnerability?
CVE-2000-0790 is a local vulnerability, allowing only users with local access to exploit it.
- collector/nvd-historical
- collector/nvd-index
- collector/nvd-api
- agent/references
- agent/type
- agent/author
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/event
- agent/description
- agent/tags
- agent/source
- vendor/microsoft
- canonical/microsoft windows 2000
- canonical/microsoft windows 98se
- canonical/microsoft windows 98
- version/microsoft windows 98/gold