Buffer Overflow in HTML Library of Internet Explorer, Outlook Express, and Windows Explorer
CVE-1999-0967

Currently unrated

Key Information:

Vendor: Microsoft
Status: Outlook Express; Windows Explorer; Internet Explorer
Vendor: CVE Published:; 1 November 1997

What is CVE-1999-0967?

This vulnerability involves a buffer overflow in the HTML library utilized by Internet Explorer, Outlook Express, and Windows Explorer. An attacker can exploit this flaw via the res: local resource protocol, potentially leading to arbitrary code execution. It highlights the importance of securing web applications and email clients to prevent unauthorized access and data breaches.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-...

x_refsource_MISC

EPSS Score

17% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Dec 8, 1999
Vulnerability published
Nov 1, 1997

Microsoft

What is CVE-1999-0967?

References

EPSS Score

Timeline