CVE-1999-1128

CVSS 2.0 Score 5.1 of 10 (medium)

Details

Published Mar 1, 1997
Updated: Nov 20, 2024

Summary

CVE-1999-1128 is a vulnerability affecting Internet Explorer 3.01 on Windows 95. Malicious websites can exploit this issue by delivering a .isp file, which is automatically downloaded and executed without user consent. This action permits the attacker to run arbitrary commands on the victim's system. The vulnerability poses a significant risk, as no user interaction is required to trigger the exploit. This flaw was a serious concern during its discovery and has been addressed in subsequent browser updates.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Internet Explorer

Affected Vendors

  • Microsoft