Vulnerabilities > Microsoft > Internet Explorer > 5.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-09-01 | CVE-1999-0669 | Unspecified vulnerability in Microsoft Internet Explorer 4.0/5.0 The Eyedog ActiveX control is marked as "safe for scripting" for Internet Explorer, which allows a remote attacker to execute arbitrary commands as demonstrated by Bubbleboy. | 4.0 |
| 1999-08-27 | CVE-1999-1016 | Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and possibly others, allows remote malicious web site or HTML emails to cause a denial of service (100% CPU consumption) via large HTML form fields such as text inputs in a table cell. | 5.0 |
| 1999-08-25 | CVE-1999-1235 | Unspecified vulnerability in Microsoft Internet Explorer 5.0 Internet Explorer 5.0 records the username and password for FTP servers in the URL history, which could allow (1) local users to read the information from another user's index.dat, or (2) people who are physically observing ("shoulder surfing") another user to read the information from the status bar when the user moves the mouse over a link. | 4.6 |
| 1999-05-01 | CVE-1999-0487 | Unspecified vulnerability in Microsoft Internet Explorer 4.0/5.0 The DHTML Edit ActiveX control in Internet Explorer allows remote attackers to read arbitrary files. | 2.6 |
| 1999-04-21 | CVE-1999-0490 | Unspecified vulnerability in Microsoft Internet Explorer 4.0/5.0 MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to learn information about a local user's files via an IMG SRC tag. | 7.5 |
| 1999-04-21 | CVE-1999-0488 | Unspecified vulnerability in Microsoft Internet Explorer 4.0/4.0.1/5.0 Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability. | 7.5 |
| 1999-04-09 | CVE-1999-0468 | Unspecified vulnerability in Microsoft Internet Explorer 5.0 Internet Explorer 5.0 allows a remote server to read arbitrary files on the client's file system using the Microsoft Scriptlet Component. | 2.6 |
| 1999-04-01 | CVE-1999-0469 | Unspecified vulnerability in Microsoft Internet Explorer 5.0 Internet Explorer 5.0 allows window spoofing, allowing a remote attacker to spoof a legitimate web site and capture information from the client. | 5.0 |
| 1999-03-23 | CVE-1999-1370 | Unspecified vulnerability in Microsoft Internet Explorer 5.0 The setup wizard (ie5setup.exe) for Internet Explorer 5.0 disables (1) the screen saver, which could leave the system open to users with physical access if a failure occurs during an unattended installation, and (2) the Task Scheduler Service, which might prevent the scheduled execution of security-critical programs. | 7.2 |