CVE-1999-0487 – Microsoft Internet Explorer 4/5 - DHTML Edit ActiveX Control File Stealing / Cross Frame Access
https://notcve.org/view.php?id=CVE-1999-0487
The DHTML Edit ActiveX control in Internet Explorer allows remote attackers to read arbitrary files. • https://www.exploit-db.com/exploits/19094 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-011 •
CVE-1999-0490
https://notcve.org/view.php?id=CVE-1999-0490
MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag. • https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-012 •
CVE-1999-0488
https://notcve.org/view.php?id=CVE-1999-0488
Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability. • https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-012 •
CVE-1999-1453 – Microsoft Internet Explorer 4 - Clipboard Paste
https://notcve.org/view.php?id=CVE-1999-1453
Internet Explorer 4 allows remote attackers (malicious web site operators) to read the contents of the clipboard via the Internet WebBrowser ActiveX object. • https://www.exploit-db.com/exploits/19164 http://marc.info/?l=ntbugtraq&m=91979439932341&w=2 http://www.securityfocus.com/bid/215 •
CVE-1999-0869 – Microsoft Internet Explorer 4.1/5.0/4.0.1 - Subframe Spoofing
https://notcve.org/view.php?id=CVE-1999-0869
Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing. • https://www.exploit-db.com/exploits/19662 https://docs.microsoft.com/en-us/security-updates/securitybulletins/1998/ms98-020 •