Vulnerability Details CVE-1999-1575
The Kodak/Wang (1) Image Edit (imgedit.ocx), (2) Image Annotation (imgedit.ocx), (3) Image Scan (imgscan.ocx), (4) Thumbnail Image (imgthumb.ocx), (5) Image Admin (imgadmin.ocx), (6) HHOpen (hhopen.ocx), (7) Registration Wizard (regwizc.dll), and (8) IE Active Setup (setupctl.dll) ActiveX controls for Internet Explorer (IE) 4.01 and 5.0 are marked as "Safe for Scripting," which allows remote attackers to create and modify files and execute arbitrary commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.226
EPSS Ranking 95.5%
CVSS Severity
CVSS v2 Score 5.1
References
- http://www.kb.cert.org/vuls/id/23412
- http://www.kb.cert.org/vuls/id/24839
- http://www.kb.cert.org/vuls/id/26924
- http://www.kb.cert.org/vuls/id/41408
- http://www.kb.cert.org/vuls/id/9162
- http://www.securityfocus.com/archive/1/28719
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-037
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7097
- http://www.kb.cert.org/vuls/id/23412
- http://www.kb.cert.org/vuls/id/24839
- http://www.kb.cert.org/vuls/id/26924
- http://www.kb.cert.org/vuls/id/41408
- http://www.kb.cert.org/vuls/id/9162
- http://www.securityfocus.com/archive/1/28719
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-037
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7097
Products affected by CVE-1999-1575
-
cpe:2.3:a:microsoft:internet_explorer:4.0.1
-
cpe:2.3:a:microsoft:internet_explorer:5.0