CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 1CVE-1999-0981 – Microsoft Internet Explorer 4/5 / Outlook 98 - 'window.open' Redirect
https://notcve.org/view.php?id=CVE-1999-0981
08 Dec 1999 — Internet Explorer 5.01 and earlier allows a remote attacker to create a reference to a client window and use a server-side redirect to access local files via that window, aka "Server-side Page Reference Redirect." • https://www.exploit-db.com/exploits/19591 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 1CVE-1999-0793 – Microsoft Internet Explorer 5.0/4.0.1 - JavaScript URL Redirection (MS99-043)
https://notcve.org/view.php?id=CVE-1999-0793
17 Nov 1999 — Internet Explorer allows remote attackers to read files by redirecting data to a Javascript applet. • https://www.exploit-db.com/exploits/19559 •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-1999-0354
https://notcve.org/view.php?id=CVE-1999-0354
01 Nov 1999 — Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the IE client through the Word 97 template, which doesn't warn the user that the template contains executable content. Also applies to Outlook when the client views a malicious email message. • https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-002 •
CVSS: 7.5EPSS: 0%CPEs: 11EXPL: 0CVE-1999-0827
https://notcve.org/view.php?id=CVE-1999-0827
01 Nov 1999 — By default, Internet Explorer 5.0 and other versions enables the "Navigate sub-frames across different domains" option, which allows frame spoofing. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0827 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-1999-1577 – Microsoft Internet Explorer 5.0/4.0.1 - hhopen OLE Control Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-1577
31 Oct 1999 — Buffer overflow in HHOpen ActiveX control (hhopen.ocx) 1.0.0.1 for Internet Explorer 4.01 and 5 allows remote attackers to execute arbitrary commands via long arguments to the OpenHelp method. • https://www.exploit-db.com/exploits/19521 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 1CVE-1999-0877 – Microsoft Internet Explorer 5.0/4.0.1 - iFrame
https://notcve.org/view.php?id=CVE-1999-0877
01 Oct 1999 — Internet Explorer 5 allows remote attackers to read files via an ExecCommand method called on an IFRAME. • https://www.exploit-db.com/exploits/19539 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 3CVE-1999-1578 – Microsoft Internet Explorer 4.1/5 - Registration Wizard Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-1578
24 Sep 1999 — Buffer overflow in Registration Wizard ActiveX control (regwizc.dll, InvokeRegWizard) 3.0.0.0 for Internet Explorer 4.01 and 5 allows remote attackers to execute arbitrary commands. • https://www.exploit-db.com/exploits/19528 •
CVSS: 10.0EPSS: 3%CPEs: 2EXPL: 1CVE-1999-0702 – Microsoft Internet Explorer 4.0.1/5 - Import/Export Favorites
https://notcve.org/view.php?id=CVE-1999-0702
10 Sep 1999 — Internet Explorer 5.0 and 5.01 allows remote attackers to modify or execute files via the Import/Export Favorites feature, aka the "ImportExportFavorites" vulnerability. • https://www.exploit-db.com/exploits/19490 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 8.8EPSS: 2%CPEs: 2EXPL: 4CVE-1999-1575 – Microsoft Internet Explorer 4.1/5 - Registration Wizard Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-1575
10 Sep 1999 — The Kodak/Wang (1) Image Edit (imgedit.ocx), (2) Image Annotation (imgedit.ocx), (3) Image Scan (imgscan.ocx), (4) Thumbnail Image (imgthumb.ocx), (5) Image Admin (imgadmin.ocx), (6) HHOpen (hhopen.ocx), (7) Registration Wizard (regwizc.dll), and (8) IE Active Setup (setupctl.dll) ActiveX controls for Internet Explorer (IE) 4.01 and 5.0 are marked as "Safe for Scripting," which allows remote attackers to create and modify files and execute arbitrary commands. • https://www.exploit-db.com/exploits/19528 •
CVSS: 9.8EPSS: 2%CPEs: 2EXPL: 1CVE-1999-0669 – Microsoft Internet Explorer 4/5 - ActiveX 'Eyedog' Remote Overflow
https://notcve.org/view.php?id=CVE-1999-0669
01 Sep 1999 — The Eyedog ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as demonstrated by Bubbleboy. • https://www.exploit-db.com/exploits/19487 •