CVE-1999-1235

medium Microsoft
CVSS v3 Base Score
4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P
EPSS Score
0.4%
Exploitation probability in 30 days
Top 40% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Published: August 25, 1999 (9759 days ago)
Last Modified: April 16, 2026
Vendor: Microsoft
Source: NVD

Description

Internet Explorer 5.0 records the username and password for FTP servers in the URL history, which could allow (1) local users to read the information from another user's index.dat, or (2) people who are physically observing ("shoulder surfing") another user to read the information from the status bar when the user moves the mouse over a link.

CWE

NVD-CWE-Other

Affected Products

microsoft internet explorer

References

🔗 ntbugtraq.ntadvice.com 🔗 packetderm.cotse.com 🔗 exchange.xforce.ibmcloud.com 🔗 ntbugtraq.ntadvice.com 🔗 packetderm.cotse.com