CVE-1999-0870

CVSS 2.0 Score 2.6 of 10 (low)

Details

Published Oct 1, 1998
Updated: Nov 20, 2024

Summary

CVE-1999-0870 is a vulnerability affecting Internet Explorer 4.01. Malicious actors can exploit this issue by pasting a file name into the browser's file upload control, allowing them to read arbitrary files on the targeted system. This vulnerability stems from the browser's failure to sanitize user input when handling file uploads, potentially leading to serious data leakage. Untrusted scripts can take advantage of this flaw, putting systems at risk of confidential information exposure.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Internet Explorer

Affected Vendors

  • Microsoft