What is CVE-1999-1094?

CVE-1999-1094 is a publicly disclosed cybersecurity vulnerability with a HIGH severity rating and CVSS score of 7.5.

How to search for CVE vulnerabilities?

You can search the 4nuxd CVE database using CVE IDs, vendor names, product names, or severity levels.

CVE-1999-1094

HIGH7.5/ 10.0

Published: December 31, 1999 at 05:00 AM

Modified: April 3, 2025 at 01:03 AM

Source: cve@mitre.org

Vulnerability Description

Buffer overflow in Internet Explorer 4.01 and earlier allows remote attackers to execute arbitrary commands via a long URL with the "mk:" protocol, aka the "MK Overrun security issue."

CVSS Metrics

Base Score

7.5

Severity

HIGH

Vector String

AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses (CWE)

NVD-CWE-Other

Source: nvd@nist.gov

References & Intelligence

http://marc.info/?l=bugtraq&m=88480839506155&w=2

Source: cve@mitre.org

http://support.microsoft.com/support/kb/articles/q176/6/97.asp

Source: cve@mitre.org

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/917

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=88480839506155&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://support.microsoft.com/support/kb/articles/q176/6/97.asp

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/917

Source: af854a3a-2127-422b-91ae-364da2661108

Related Resources

Browse CVE Database

Search 294,000+ vulnerabilities

CVEs from 1999

View all vulnerabilities this year

CWE Database

Explore weakness categories

Security Writeups

Learn from real-world examples

About 4nuxd

Cybersecurity research & tools

Homepage

Explore more security resources