CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 1CVE-1999-0487 – Microsoft Internet Explorer 4/5 - DHTML Edit ActiveX Control File Stealing / Cross Frame Access
https://notcve.org/view.php?id=CVE-1999-0487
01 May 1999 — The DHTML Edit ActiveX control in Internet Explorer allows remote attackers to read arbitrary files. • https://www.exploit-db.com/exploits/19094 •
CVSS: 8.1EPSS: 1%CPEs: 4EXPL: 0CVE-1999-0488
https://notcve.org/view.php?id=CVE-1999-0488
21 Apr 1999 — Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability. • https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-012 •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 0CVE-1999-0490
https://notcve.org/view.php?id=CVE-1999-0490
21 Apr 1999 — MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag. • https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-012 •
CVSS: 4.3EPSS: 2%CPEs: 7EXPL: 1CVE-1999-0869 – Microsoft Internet Explorer 4.1/5.0/4.0.1 - Subframe Spoofing
https://notcve.org/view.php?id=CVE-1999-0869
01 Dec 1998 — Internet Explorer 3.x to 4.01 allows a remote attacker to insert malicious content into a frame of another web site, aka frame spoofing. • https://www.exploit-db.com/exploits/19662 •
CVSS: 7.5EPSS: 3%CPEs: 2EXPL: 0CVE-1999-0870
https://notcve.org/view.php?id=CVE-1999-0870
01 Oct 1998 — Internet Explorer 4.01 allows remote attackers to read arbitrary files by pasting a file name into the file upload control, aka untrusted scripted paste. • https://docs.microsoft.com/en-us/security-updates/securitybulletins/1998/ms98-015 •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-1999-0871
https://notcve.org/view.php?id=CVE-1999-0871
04 Sep 1998 — Internet Explorer 4.0 and 4.01 allow a remote attacker to read files via IE's cross frame security, aka the "Cross Frame Navigate" vulnerability. • http://www.osvdb.org/7837 •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-1999-0331
https://notcve.org/view.php?id=CVE-1999-0331
01 Jan 1998 — Buffer overflow in Internet Explorer 4.0(1). • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0331 •