VULHUB ™

Microsoft Security Bulletin (MS00-085) - Microsoft has released a patch that eliminates the "ActiveX Parameter Validation" vulnerability in Windows 2000. A buffer overflow in an ActiveX control which can be called from a web page or email message allows malicious users to execute arbitrary code. Users of IE, Outlook, or Outlook Express are not vulnerable if ActiveX is disabled. Microsoft FAQ on this issue available here.

Microsoft Security Bulletin (MS00-085) - Microsoft has released a patch that eliminates the "ActiveX Parameter Validation" vulnerability in Windows 2000. A buffer overflow in an ActiveX control which can be called from a web page or email message allows malicious users to execute arbitrary code. Users of IE, Outlook, or Outlook Express are not vulnerable if ActiveX is disabled. Microsoft FAQ on this issue available here.