| Vulnerability Name: | CVE-1999-1016 (CCN-3246) | ||||||||
| Assigned: | 1999-08-27 | ||||||||
| Published: | 1999-08-27 | ||||||||
| Updated: | 2021-07-22 | ||||||||
| Summary: | Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and possibly others, allows remote malicious web site or HTML emails to cause a denial of service (100% CPU consumption) via large HTML form fields such as text inputs in a table cell. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||
| References: | Source: MITRE Type: CNA CVE-1999-1016 Source: NTBUGTRAQ Type: UNKNOWN 19990827 HTML code to crash IE5 and Outlook Express 5 Source: CCN Type: NTBugTraq Mailing List, Fri, 27 Aug 1999 19:08:21 +0100 HTML code to crash IE5 and Outlook Express 5 Source: CCN Type: OSVDB ID: 8210 Microsoft HTML Control Large Form Field DoS Source: BID Type: Exploit, Vendor Advisory 606 Source: CCN Type: BID-606 Microsoft HTML Form Control DoS Vulnerability Source: XF Type: UNKNOWN ms-html-table-form-dos(3246) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||