CVE-1999-0354

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Nov 1, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0354 is a vulnerability affecting Internet Explorer 4.x and 5.x, as well as Outlook, when using Word 97. The issue permits the execution of arbitrary Visual Basic programs without user notification. Malicious templates containing executable content can exploit this vulnerability, posing a significant threat to clients who view them through their web browser or email.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft Office Word
Microsoft Internet Explorer

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/LFRFTi
https://www.cve.org/CVERecord?id=CVE-1999-0354
https://nvd.nist.gov/vuln/detail/CVE-1999-0354

Back to Vulnerability Database