Exploitation Summary
EIP tracks 1 public exploit for CVE-2000-0329. PoCs published by Mukund.
AI-analyzed exploit summary This document describes the CVE-2000-0329 vulnerability in Microsoft's Active Setup Control, which allows execution of unsigned CAB files. It explains how an attacker can exploit this via Outlook Express by disguising a CAB file as an image attachment and using VBScript to trigger the installation of malicious executables.
Description
A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control" vulnerability.
Exploits (1)
This document describes the CVE-2000-0329 vulnerability in Microsoft's Active Setup Control, which allows execution of unsigned CAB files. It explains how an attacker can exploit this via Outlook Express by disguising a CAB file as an image attachment and using VBScript to trigger the installation of malicious executables.