CVE-1999-0858

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Dec 2, 1999
Updated: Nov 20, 2024
CWE ID 16

Summary

CVE-1999-0858 is a cybersecurity vulnerability affecting Internet Explorer 5. A remote attacker can exploit this flaw by setting up a malicious WPAD (Web Proxy Auto-Discovery) server. The server is used to help clients automatically configure proxy settings. However, in the case of this vulnerability, an attacker can manipulate the server to modify the IE client's proxy configuration, potentially leading to unauthorized access to protected networks or websites. This issue poses a significant risk, as many users may not be aware of the need to manually configure their proxy settings, making them more susceptible to this type of attack.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Internet Explorer

Affected Vendors

  • Microsoft