Vulnerability Description
Internet Explorer 3.01 on Windows 95 allows remote malicious web sites to execute arbitrary commands via a .isp file, which is automatically downloaded and executed without prompting the user.
CVSS Score
5.1
MEDIUM
AV:N/AC:H/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Internet Explorer | 3.0.1 |
References
- http://members.tripod.com/~unibyte/iebug3.htm
- http://oliver.efri.hr/~crv/security/bugs/NT/ie3.html
- http://members.tripod.com/~unibyte/iebug3.htm
- http://oliver.efri.hr/~crv/security/bugs/NT/ie3.html
FAQ
What is CVE-1999-1128?
CVE-1999-1128 is a vulnerability with a CVSS score of 5.1 (MEDIUM). Internet Explorer 3.01 on Windows 95 allows remote malicious web sites to execute arbitrary commands via a .isp file, which is automatically downloaded and executed without prompting the user.
How severe is CVE-1999-1128?
CVE-1999-1128 has been rated MEDIUM with a CVSS base score of 5.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-1999-1128?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Internet Explorer.