What is CVE-1999-1093?

CVE-1999-1093 is a publicly disclosed cybersecurity vulnerability with a MEDIUM severity rating and CVSS score of 5.1.

How to search for CVE vulnerabilities?

You can search the 4nuxd CVE database using CVE IDs, vendor names, product names, or severity levels.

CVE-1999-1093

MEDIUM5.1/ 10.0

Published: December 31, 1999 at 05:00 AM

Modified: April 3, 2025 at 01:03 AM

Source: cve@mitre.org

Vulnerability Description

Buffer overflow in the Window.External function in the JScript Scripting Engine in Internet Explorer 4.01 SP1 and earlier allows remote attackers to execute arbitrary commands via a malicious web page.

CVSS Metrics

Base Score

5.1

Severity

MEDIUM

Vector String

AV:N/AC:H/Au:N/C:P/I:P/A:P

Weaknesses (CWE)

NVD-CWE-Other

Source: nvd@nist.gov

References & Intelligence

http://support.microsoft.com/support/kb/articles/q191/2/00.asp

Source: cve@mitre.org

http://www.iss.net/security_center/static/1276.php

Source: cve@mitre.org

https://docs.microsoft.com/en-us/security-updates/securitybulletins/1998/ms98-011

Source: cve@mitre.org

http://support.microsoft.com/support/kb/articles/q191/2/00.asp

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.iss.net/security_center/static/1276.php

Source: af854a3a-2127-422b-91ae-364da2661108

https://docs.microsoft.com/en-us/security-updates/securitybulletins/1998/ms98-011

Source: af854a3a-2127-422b-91ae-364da2661108

Related Resources

Browse CVE Database

Search 294,000+ vulnerabilities

CVEs from 1999

View all vulnerabilities this year

CWE Database

Explore weakness categories

Security Writeups

Learn from real-world examples

About 4nuxd

Cybersecurity research & tools

Homepage

Explore more security resources