CVE-1999-1367

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published May 6, 1999
Updated: Nov 7, 2023

Summary

CVE-1999-1367 is a vulnerability affecting Internet Explorer 5.0, where the browser fails to reset the username/password cache for websites without proper cache controls. This issue allows users on the same system to access restricted websites that were previously visited by other users, posing a significant security risk. The cache contains authentication credentials that should be protected, but the browser does not clear them adequately, leading to potential unauthorized access. This flaw highlights the importance of implementing strong cache controls and securing user credentials to prevent unintended disclosure.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Internet Explorer

Affected Vendors

  • Microsoft