CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-1999-0489

MSHTML.DLL in Internet Explorer 5.0 allows a remote attacker to paste a file name into the file upload intrinsic control, a variant of "untrusted scripted paste" as described in MS:MS98-013.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.171

EPSS Ranking 94.8%

CVSS Severity

CVSS v2 Score 10.0

References

https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-015
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-015

Products affected by CVE-1999-0489

Microsoft » Windows Nt » Version: 4.0

cpe:2.3:o:microsoft:windows_nt:4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-1999-0489

Products

Pricing

Contact Us