CVE-1999-1128
CVSS 2.0 Score 5.1 of 10 (medium)
Details
Published Mar 1, 1997
Updated: Nov 20, 2024
Summary
CVE-1999-1128 is a vulnerability affecting Internet Explorer 3.01 on Windows 95. Malicious websites can exploit this issue by delivering a .isp file, which is automatically downloaded and executed without user consent. This action permits the attacker to run arbitrary commands on the victim's system. The vulnerability poses a significant risk, as no user interaction is required to trigger the exploit. This flaw was a serious concern during its discovery and has been addressed in subsequent browser updates.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Microsoft Internet Explorer
Affected Vendors
- Microsoft