Unrated severityNVD Advisory· Published May 11, 2000· Updated Apr 16, 2026

CVE-2000-0419

Description

The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activities via the "Show Me" function in Office Help, aka the "Office 2000 UA Control" vulnerability.

Affected products

Microsoft/Access
cpe:2.3:a:microsoft:access:2000:*:*:*:*:*:*:*
Microsoft/Excel
cpe:2.3:a:microsoft:excel:2000:*:*:*:*:*:*:*
Microsoft/Frontpage
cpe:2.3:a:microsoft:frontpage:2000:*:*:*:*:*:*:*
Microsoft/Office
cpe:2.3:a:microsoft:office:2000:*:*:*:*:*:*:*
Microsoft/Outlook
cpe:2.3:a:microsoft:outlook:2000:*:*:*:*:*:*:*
Microsoft/Photodraw 2000
cpe:2.3:a:microsoft:photodraw_2000:1.0:*:*:*:*:*:*:*
Microsoft/Powerpoint
cpe:2.3:a:microsoft:powerpoint:2000:*:*:*:*:*:*:*
Microsoft/Project
cpe:2.3:a:microsoft:project:2000:*:*:*:*:*:*:*
Microsoft/Word
cpe:2.3:a:microsoft:word:2000:*:*:*:*:*:*:*
Microsoft/Works
cpe:2.3:a:microsoft:works:2000:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cert.org/advisories/CA-2000-07.htmlnvdUS Government Resource
www.microsoft.com/technet/support/kb.aspnvd
www.securityfocus.com/bid/1197nvd
docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-034nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.011
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000