Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-0347

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-1999-0347
Last Modified 02 Nov 2005 12:00:00
Published 26 Jan 1999 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-1999-0347

Summary

Internet Explorer 4.01 allows remote attackers to read local files and spoof web pages via a "%01" character in an "about:" Javascript URL, which causes Internet Explorer to use the domain specified after the character.

Vulnerable Systems


References

NTBUGTRAQ - 19990126 Javascript ecurity bug in Internet Explorer


Last Updated: 27 May 2016 10:34:56