CVE-1999-1259 — Microsoft Office vulnerability

2 documents2 sources

Severity

2.1LOWNVD

EPSS

1.9%

top 16.55%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Office

Timeline

PublishedDec 31

Latest updateApr 30

Description

Microsoft Office 98, Macintosh Edition, does not properly initialize the disk space used by Office 98 files and effectively inserts data from previously deleted files into the Office file, which could allow attackers to obtain sensitive information.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/office98

Patches

Patch: support.microsoft.com ↗Patch: support.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-4fg5-9xqq-h6cq: Microsoft Office 98, Macintosh Edition, does not properly initialize the disk space used by Office 98 files and effectively inserts data from previous↗2022-04-30

▶