6.5 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
74.3%
The Microsoft Active Setup ActiveX component in Internet Explorer 4.x and 5.x allows a remote attacker to install software components without prompting the user by stating that the softwareβs manufacturer is Microsoft.
www.securityfocus.com/templates/archive.pike?list=1&date=2000-02-15&msg=20000221103938.T21312%40securityfocus.com