Lucene search

[email protected]CVE-1999-1474

HistorySep 12, 2001 - 4:00 a.m.

CVE-1999-1474

2001-09-1204:00:00

[email protected]

web.nvd.nist.gov

cve-1999-1474

powerpoint 95

powerpoint 97

remote attack

auto-run

no prompt

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

Low

0.014 Low

EPSS

Percentile

86.5%

JSON

PowerPoint 95 and 97 allows remote attackers to cause an application to be run automatically without prompting the user, possibly through the slide show, when the document is opened in browsers such as Internet Explorer.

Affected configurations

NVD

Node

microsoftpowerpointMatch95

microsoftpowerpointMatch97

CPENameOperatorVersion
microsoft:powerpointmicrosoft powerpointeq95
microsoft:powerpointmicrosoft powerpointeq97

CPE	Name	Operator	Version
microsoft:powerpoint	microsoft powerpoint	eq	95
microsoft:powerpoint	microsoft powerpoint	eq	97

References

www.microsoft.com/windows/ie/security/powerpoint.asp

exchange.xforce.ibmcloud.com/vulnerabilities/179

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.1 High

AI Score

Confidence

Low

0.014 Low

EPSS

Percentile

86.5%

JSON

Related for CVE-1999-1474

nvd1 cvelist1