CVSS: 7.5EPSS: 2%CPEs: 10EXPL: 0CVE-2000-0419
https://notcve.org/view.php?id=CVE-2000-0419
The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activities via the "Show Me" function in Office Help, aka the "Office 2000 UA Control" vulnerability. • http://www.cert.org/advisories/CA-2000-07.html http://www.microsoft.com/technet/support/kb.asp?ID=262767 http://www.securityfocus.com/bid/1197 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-034 •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-1999-0794
https://notcve.org/view.php?id=CVE-1999-0794
Microsoft Excel does not warn a user when a macro is present in a Symbolic Link (SYLK) format file. • http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ241900 http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ241901 http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ241902 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-044 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •