Back
CVE-2000-1034
Buffer overflow in the System Monitor ActiveX control in Windows 2000 allows remote attackers to execute arbitrary commands via a long LogFileName parameter in HTML source code, aka the "ActiveX Parameter Validation" vulnerability.
Published: Dec 11, 2000
Modified: Apr 16, 2026
CVSS Metrics
Affected Products (1)
| Vendor | Product | Version |
|---|---|---|
| microsoft | windows_2000 | * |
GitHub Security Advisory GHSA-wwrg-62f8-mmw8
Buffer overflow in the System Monitor ActiveX control in Windows 2000 allows remote attackers to...
References (8)
- http://marc.info/?l=bugtraq&m=97349782305448&w=2
- http://www.securityfocus.com/bid/1899 Exploit, Patch, Vendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-085
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5467
- http://marc.info/?l=bugtraq&m=97349782305448&w=2
- http://www.securityfocus.com/bid/1899 Exploit, Patch, Vendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-085
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5467
Risk Scores
CVSS Score
10.0 / 10
EPSS Score
22.08%
Top 4% most likely to be exploited
Threat Score
46.6 / 100
Data Sources
NVD
EPSS
GitHub