Buffer Overflow in HTML Library of Internet Explorer, Outlook Express, and Windows Explorer
CVE-1999-0967

Currently unrated

Key Information:

Vendor: Microsoft
Status: Outlook Express; Windows Explorer; Internet Explorer
Vendor: CVE Published:; 1 November 1997

Summary

This vulnerability involves a buffer overflow in the HTML library utilized by Internet Explorer, Outlook Express, and Windows Explorer. An attacker can exploit this flaw via the res: local resource protocol, potentially leading to arbitrary code execution. It highlights the importance of securing web applications and email clients to prevent unauthorized access and data breaches.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-...

x_refsource_MISC

EPSS Score

17% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Dec 8, 1999
Vulnerability published
Nov 1, 1997