PT-1998-1114 · Microsoft · Internet Explorer

Published

1998-10-01

Updated

2021-07-22

CVE-1999-0870

CVSS v2.0

2.6

Low

Vector

AV:N/AC:H/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Internet Explorer version 4.01

Description The issue allows remote attackers to read arbitrary files by pasting a file name into the file upload control. This is related to an untrusted scripted paste.

Recommendations For Internet Explorer version 4.01, consider disabling the file upload control as a temporary workaround until a patch is available. Restrict access to sensitive files to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-0870

Affected Products

Internet Explorer

PT-1998-1114 · Microsoft · Internet Explorer

CVE-1999-0870

Related Identifiers

Affected Products

References · 2