Vulnerabilities > CVE-1999-1575 - Unspecified vulnerability in Microsoft Internet Explorer 4.0.1/5.0
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The Kodak/Wang (1) Image Edit (imgedit.ocx), (2) Image Annotation (imgedit.ocx), (3) Image Scan (imgscan.ocx), (4) Thumbnail Image (imgthumb.ocx), (5) Image Admin (imgadmin.ocx), (6) HHOpen (hhopen.ocx), (7) Registration Wizard (regwizc.dll), and (8) IE Active Setup (setupctl.dll) ActiveX controls for Internet Explorer (IE) 4.01 and 5.0 are marked as "Safe for Scripting," which allows remote attackers to create and modify files and execute arbitrary commands.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Exploit-Db
description Microsoft Internet Explorer 4.0 for Windows 95/Windows NT 4 Setupctl ActiveX Control Buffer Overflow. CVE-1999-1575. Remote exploit for windows platform id EDB-ID:19515 last seen 2016-02-02 modified 1999-09-27 published 1999-09-27 reporter Shane Hird source https://www.exploit-db.com/download/19515/ title Microsoft Internet Explorer 4.0 for Windows 95/Windows NT 4 - Setupctl ActiveX Control Buffer Overflow description Microsoft Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4/Internet Explorer 4.0.1 for Windows 98/Windows NT 4.0 hhopen OLE Control ... id EDB-ID:19521 last seen 2016-02-02 modified 1999-09-27 published 1999-09-27 reporter Shane Hird source https://www.exploit-db.com/download/19521/ title Microsoft Internet Explorer 5.0/4.0.1 hhopen OLE Control Buffer Overflow Vulnerability description Microsoft Internet Explorer 4.1/5.0 for Windows 95/Windows NT 4,Windows 98 Registration Wizard Buffer Overflow Vulnerability. CVE-1999-1575,CVE-1999-1578. Lo... id EDB-ID:19528 last seen 2016-02-02 modified 1999-09-27 published 1999-09-27 reporter Shane Hird source https://www.exploit-db.com/download/19528/ title Microsoft Internet Explorer 4.1/5.0 Registration Wizard Buffer Overflow
References
- http://www.securityfocus.com/archive/1/28719
- http://www.kb.cert.org/vuls/id/23412
- http://www.kb.cert.org/vuls/id/24839
- http://www.kb.cert.org/vuls/id/26924
- http://www.kb.cert.org/vuls/id/41408
- http://www.kb.cert.org/vuls/id/9162
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7097
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-037