CVE-1999-1094

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Dec 31, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-1094 is a buffer overflow vulnerability affecting Internet Explorer 4.01 and earlier versions. Malicious actors can exploit this issue by crafting long URLs using the "mk:" protocol to overload the buffer and execute arbitrary commands remotely. This security flaw, also known as the "MK Overrun" vulnerability, poses a significant threat to users who visit compromised websites or click on malicious links. Successful exploitation could lead to the installation of malware or unauthorized access to sensitive information. To mitigate this risk, users should update their Internet Explorer software or consider using alternative web browsers to protect their systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Internet Explorer

Affected Vendors

  • Microsoft