Description
The "download behavior" in Internet Explorer 5 allows remote attackers to read arbitrary files via a server-side redirect.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Georgi Guninski · textremotewindows
https://www.exploit-db.com/exploits/19530
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/674
Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-040
Third Party Advisory, US Government Resource third-party-advisory
government-resource
x_refsource_ciac
http://www.ciac.org/ciac/bulletins/k-002.shtml
Vendor Advisory vendor-advisory
x_refsource_mskb
http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ242542
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/37828
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/11274
Scores
EPSS
0.5251
EPSS Percentile
98.0%
Details
CWE
CWE-94
Status
published
Products (1)
microsoft/internet_explorer
5.0
Published
Sep 01, 1999
Tracked Since
Feb 18, 2026