CVE-1999-1093Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft Internet Explorer

3 documents3 sources
Severity
5.1MEDIUMNVD
EPSS
6.3%
top 9.04%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Internet Explorer
Timeline
PublishedDec 31
Latest updateApr 20

Description

Buffer overflow in the Window.External function in the JScript Scripting Engine in Internet Explorer 4.01 SP1 and earlier allows remote attackers to execute arbitrary commands via a malicious web page.

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages1 packages

🔴Vulnerability Details

2
VulDB
Microsoft Internet Explorer 4.0/4.01 JScript Scripting Engine window.external memory corruption (MS98-011 / XFDB-1276)2026-04-20
GHSA
GHSA-2w6r-5vhj-25r3: Buffer overflow in the Window2022-04-30
CVE-1999-1093 — Microsoft vulnerability | cvebase