CVE-1999-1474 — Microsoft Powerpoint vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

7.4%

top 8.25%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Powerpoint

Timeline

PublishedDec 31

Latest updateApr 30

Description

PowerPoint 95 and 97 allows remote attackers to cause an application to be run automatically without prompting the user, possibly through the slide show, when the document is opened in browsers such as Internet Explorer.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDmicrosoft/powerpoint95, 97+1

🔴Vulnerability Details

GHSA

GHSA-842r-9c3w-jrvj: PowerPoint 95 and 97 allows remote attackers to cause an application to be run automatically without prompting the user, possibly through the slide sh↗2022-04-30

▶

CVEList

CVE-1999-1474: PowerPoint 95 and 97 allows remote attackers to cause an application to be run automatically without prompting the user, possibly through the slide sh↗2001-09-12

▶