CVE-1999-0967 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft Internet Explorer

3 documents3 sources

Severity

10.0CRITICALNVD

EPSS

17.9%

top 4.84%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Internet Explorer

Timeline

PublishedNov 1

Latest updateApr 17

Description

Buffer overflow in the HTML library used by Internet Explorer, Outlook Express, and Windows Explorer via the res: local resource protocol.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDmicrosoft/internet_explorer4.0

🔴Vulnerability Details

VulDB

Microsoft Internet Explorer 4.0 HTML Library res Link memory corruption (XFDB-3837 / SBV-2874)↗2026-04-17

▶

GHSA

GHSA-2wpq-5932-m8cw: Buffer overflow in the HTML library used by Internet Explorer, Outlook Express, and Windows Explorer via the res: local resource protocol↗2022-04-30

▶