CVE-1999-0870
CVSS 2.0 Score 2.6 of 10 (low)
Details
Published Oct 1, 1998
Updated: Nov 20, 2024
Summary
CVE-1999-0870 is a vulnerability affecting Internet Explorer 4.01. Malicious actors can exploit this issue by pasting a file name into the browser's file upload control, allowing them to read arbitrary files on the targeted system. This vulnerability stems from the browser's failure to sanitize user input when handling file uploads, potentially leading to serious data leakage. Untrusted scripts can take advantage of this flaw, putting systems at risk of confidential information exposure.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Microsoft Internet Explorer
Affected Vendors
- Microsoft