CVE-1999-1093

CVSS 2.0 Score 5.1 of 10 (medium)

Details

Published Dec 31, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-1093 refers to a buffer overflow vulnerability in Internet Explorer 4.01 SP1 and earlier versions' JScript Scripting Engine, specifically in the Window.External function. This issue allows remote attackers to execute arbitrary commands by exploiting a maliciously crafted web page. The buffer overflow occurs when the function fails to properly validate user input, leading to memory corruption and potential code execution. This vulnerability poses a significant risk, as it can be leveraged to install malware, steal sensitive information, or take control of the affected system.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Internet Explorer

Affected Vendors

  • Microsoft