CVE-1999-0702

Internet Explorer 5.0 and 5.01 - Remote Code Execution via Import/Export Favorites

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0702. PoCs published by Georgi Guninski.

AI-analyzed exploit summary This exploit leverages the ImportExportFavorites() method in older versions of Internet Explorer to write arbitrary files to the system, potentially allowing an attacker to create or overwrite files via a malicious script. The provided PoC demonstrates writing the user's favorites to the root of the C: drive.

Description

Internet Explorer 5.0 and 5.01 allows remote attackers to modify or execute files via the Import/Export Favorites feature, aka the "ImportExportFavorites" vulnerability.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Georgi Guninski · textremotewindows
https://www.exploit-db.com/exploits/19490

This exploit leverages the ImportExportFavorites() method in older versions of Internet Explorer to write arbitrary files to the system, potentially allowing an attacker to create or overwrite files via a malicious script. The provided PoC demonstrates writing the user's favorites to the root of the C: drive.

Classification
Working Poc 90%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: Microsoft Internet Explorer 4.0.1, 5.0
No auth needed
Prerequisites: Victim must be using a vulnerable version of Internet Explorer · Victim must execute the malicious script (e.g., via a webpage or email)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/627
Vendor Advisory vendor-advisory x_refsource_mskb
http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ241361

Scores

EPSS 0.2443
EPSS Percentile 97.6%

Details

CWE
CWE-94
Status published
Products (2)
microsoft/internet_explorer 4.0.1
microsoft/internet_explorer 5.0
Published Sep 10, 1999
Tracked Since Feb 18, 2026