CVE-1999-1484

Name of the Vulnerable Software and Affected Versions: MSN Setup BBS version 4.71.0.10

Description: A buffer overflow issue exists in the MSN Setup BBS ActiveX control, which allows a remote attacker to execute arbitrary commands. This can be achieved through the methods vAddNewsServer or bIsNewsServerConfigured.

Recommendations: For MSN Setup BBS version 4.71.0.10, consider disabling the vAddNewsServer and bIsNewsServerConfigured methods until a patch is available. Restrict access to the setupbbs.ocx ActiveX control to minimize the risk of exploitation.