CVE-1999-1093

high

Description

Buffer overflow in the Window.External function in the JScript Scripting Engine in Internet Explorer 4.01 SP1 and earlier allows remote attackers to execute arbitrary commands via a malicious web page.

References

Advisories
More

https://docs.microsoft.com/en-us/security-updates/securitybulletins/1998/ms98-011

http://support.microsoft.com/support/kb/articles/q191/2/00.asp

http://www.iss.net/security_center/static/1276.php

Details

Source: Mitre, NVD

Published: 1999-12-31

Updated: 2025-04-03

Risk Information

CVSS v2

Base Score: 5.1

Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.06267

Detections

Analytics