CVE-1999-1575

The Kodak/Wang (1) Image Edit (imgedit.ocx), (2) Image Annotation (imgedit.ocx), (3) Image Scan (imgscan.ocx), (4) Thumbnail Image (imgthumb.ocx), (5) Image Admin (imgadmin.ocx), (6) HHOpen (hhopen.ocx), (7) Registration Wizard (regwizc.dll), and (8) IE Active Setup (setupctl.dll) ActiveX controls for Internet Explorer (IE) 4.01 and 5.0 are marked as "Safe for Scripting," which allows remote attackers to create and modify files and execute arbitrary commands.

Published: Sep 10, 1999
Updated: Apr 13, 2023
CVE: CVE-1999-1575
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / internet_explorer	4.0.1	4.0.1.x
microsoft / internet_explorer	5.0	5.0.x

http://www.kb.cert.org/vuls/id/23412
http://www.kb.cert.org/vuls/id/24839
http://www.kb.cert.org/vuls/id/26924
http://www.kb.cert.org/vuls/id/41408
http://www.kb.cert.org/vuls/id/9162
http://www.securityfocus.com/archive/1/28719
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-037
https://exchange.xforce.ibmcloud.com/vulnerabilities/7097

Vulnerability Database

289,599

CVE-1999-1575