Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-0354


Vulnerability Score 7.5 7.5
CVE Id CVE-1999-0354
Last Modified 09 Sep 2008 08:34:24
Published 01 Nov 1999 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the IE client through the Word 97 template, which doesn't warn the user that the template contains executable content. Also applies to Outlook when the client views a malicious email message.

Vulnerable Systems


  • Microsoft Ie 4.0

  • Microsoft Ie 5.0

  • Microsoft Word 97


MS - MS99-002

Last Updated: 27 May 2016 10:34:56