CVSS: 2.6EPSS: 1%CPEs: 2EXPL: 1CVE-1999-0487 – Microsoft Internet Explorer 4/5 - DHTML Edit ActiveX Control File Stealing / Cross Frame Access
https://notcve.org/view.php?id=CVE-1999-0487
The DHTML Edit ActiveX control in Internet Explorer allows remote attackers to read arbitrary files. • https://www.exploit-db.com/exploits/19094 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-011 •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 0CVE-1999-0490
https://notcve.org/view.php?id=CVE-1999-0490
MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag. • https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-012 •
CVSS: 7.5EPSS: 1%CPEs: 4EXPL: 0CVE-1999-0488
https://notcve.org/view.php?id=CVE-1999-0488
Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability. • https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-012 •
CVSS: 2.6EPSS: 2%CPEs: 7EXPL: 1CVE-1999-0869 – Microsoft Internet Explorer 4.1/5.0/4.0.1 - Subframe Spoofing
https://notcve.org/view.php?id=CVE-1999-0869
Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing. • https://www.exploit-db.com/exploits/19662 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1998/ms98-020 •
CVSS: 2.6EPSS: 3%CPEs: 2EXPL: 0CVE-1999-0870
https://notcve.org/view.php?id=CVE-1999-0870
Internet Explorer 4.01 allows remote attackers to read arbitrary files by pasting a file name into the file upload control, aka untrusted scripted paste. • https://docs.microsoft.com/en-us/security-updates/securitybulletins/1998/ms98-015 •