Vulnerability Details CVE-1999-1094
Buffer overflow in Internet Explorer 4.01 and earlier allows remote attackers to execute arbitrary commands via a long URL with the "mk:" protocol, aka the "MK Overrun security issue."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.069
EPSS Ranking 91.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://marc.info/?l=bugtraq&m=88480839506155&w=2
- http://support.microsoft.com/support/kb/articles/q176/6/97.asp
- https://exchange.xforce.ibmcloud.com/vulnerabilities/917
- http://marc.info/?l=bugtraq&m=88480839506155&w=2
- http://support.microsoft.com/support/kb/articles/q176/6/97.asp
- https://exchange.xforce.ibmcloud.com/vulnerabilities/917
Products affected by CVE-1999-1094
-
cpe:2.3:a:microsoft:internet_explorer:-
-
cpe:2.3:a:microsoft:internet_explorer:3.0
-
cpe:2.3:a:microsoft:internet_explorer:3.0.1
-
cpe:2.3:a:microsoft:internet_explorer:3.0.2
-
cpe:2.3:a:microsoft:internet_explorer:3.1
-
cpe:2.3:a:microsoft:internet_explorer:3.2
-
cpe:2.3:a:microsoft:internet_explorer:4.0
-
cpe:2.3:a:microsoft:internet_explorer:4.0.1