Lucene search

[email protected]CVE-1999-1241

HistoryMay 06, 1999 - 4:00 a.m.

CVE-1999-1241

1999-05-0604:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-1999-1241

internet explorer

security flaw

activex

nvd.

8.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

72.1%

JSON

Internet Explorer, with a security setting below Medium, allows remote attackers to execute arbitrary commands via a malicious web page that uses the FileSystemObject ActiveX object.

CPENameOperatorVersion
microsoft:internet_explorermicrosoft internet explorereq6.0.2900

CPE	Name	Operator	Version
microsoft:internet_explorer	microsoft internet explorer	eq	6.0.2900

References

oliver.efri.hr/~crv/security/bugs/NT/activex4.html

exchange.xforce.ibmcloud.com/vulnerabilities/2173

8.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

72.1%

JSON