CVE-1999-0354

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Nov 1, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-0354 is a vulnerability affecting Internet Explorer 4.x and 5.x, as well as Outlook, when using Word 97. The issue allows for the arbitrary execution of Visual Basic programs, with the templates not warning users of the contained executable content. This vulnerability can be exploited through malicious email messages, potentially leading to significant security risks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Office Word
  • Microsoft Internet Explorer

Affected Vendors

  • Microsoft