Vulnerabilities > CVE-1999-1235 - Unspecified vulnerability in Microsoft Internet Explorer 5.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Internet Explorer 5.0 records the username and password for FTP servers in the URL history, which could allow (1) local users to read the information from another user's index.dat, or (2) people who are physically observing ("shoulder surfing") another user to read the information from the status bar when the user moves the mouse over a link.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Microsoft Internet Explorer 5.0 for Windows 2000/Windows NT 4 FTP Password Storage Vulnerability. CVE-1999-1235. Local exploit for windows platform |
| id | EDB-ID:19473 |
| last seen | 2016-02-02 |
| modified | 1999-08-25 |
| published | 1999-08-25 |
| reporter | Makoto Shiotsuki |
| source | https://www.exploit-db.com/download/19473/ |
| title | Microsoft Internet Explorer 5.0 FTP Password Storage Vulnerability |