CVE-1999-0354
https://notcve.org/view.php?id=CVE-1999-0354
Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the IE client through the Word 97 template, which doesn't warn the user that the template contains executable content. Also applies to Outlook when the client views a malicious email message. • https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-002 •
CVE-1999-1577 – Microsoft Internet Explorer 5.0/4.0.1 - hhopen OLE Control Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-1577
Buffer overflow in HHOpen ActiveX control (hhopen.ocx) 1.0.0.1 for Internet Explorer 4.01 and 5 allows remote attackers to execute arbitrary commands via long arguments to the OpenHelp method. • https://www.exploit-db.com/exploits/19521 http://www.kb.cert.org/vuls/id/29795 http://www.securityfocus.com/archive/1/28719 http://www.securityfocus.com/bid/669 https://exchange.xforce.ibmcloud.com/vulnerabilities/3314 •
CVE-1999-0877 – Microsoft Internet Explorer 5.0/4.0.1 - iFrame
https://notcve.org/view.php?id=CVE-1999-0877
Internet Explorer 5 allows remote attackers to read files via an ExecCommand method called on an IFRAME. • https://www.exploit-db.com/exploits/19539 http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ243638 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-042 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-1999-1578 – Microsoft Internet Explorer 4.1/5 - Registration Wizard Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-1578
Buffer overflow in Registration Wizard ActiveX control (regwizc.dll, InvokeRegWizard) 3.0.0.0 for Internet Explorer 4.01 and 5 allows remote attackers to execute arbitrary commands. • https://www.exploit-db.com/exploits/19528 http://www.kb.cert.org/vuls/id/37556 http://www.securityfocus.com/archive/1/28719 http://www.securityfocus.com/bid/671 https://exchange.xforce.ibmcloud.com/vulnerabilities/3311 •
CVE-1999-0702 – Microsoft Internet Explorer 4.0.1/5 - Import/Export Favorites
https://notcve.org/view.php?id=CVE-1999-0702
Internet Explorer 5.0 and 5.01 allows remote attackers to modify or execute files via the Import/Export Favorites feature, aka the "ImportExportFavorites" vulnerability. • https://www.exploit-db.com/exploits/19490 http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ241361 http://www.securityfocus.com/bid/627 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-037 • CWE-94: Improper Control of Generation of Code ('Code Injection') •