CVE-1999-1367
First published: Thu May 06 1999(Updated: )
Internet Explorer 5.0 does not properly reset the username/password cache for Web sites that do not use standard cache controls, which could allow users on the same system to access restricted web sites that were visited by other users.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Internet Explorer | =5.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-1999-1367?
CVE-1999-1367 has been classified as a medium severity vulnerability due to the potential unauthorized access to restricted websites.
How do I fix CVE-1999-1367?
To fix CVE-1999-1367, users should upgrade from Internet Explorer 5.0 to a later version that correctly handles username/password caching.
What is the impact of CVE-1999-1367?
The impact of CVE-1999-1367 could allow unauthorized users on the same system to access web pages that were previously visited by other users.
Which software is affected by CVE-1999-1367?
CVE-1999-1367 specifically affects Internet Explorer version 5.0.
Can CVE-1999-1367 be exploited remotely?
CVE-1999-1367 does not allow for remote exploitation as it requires local access to the affected system to exploit the cached credentials.
- agent/references
- agent/author
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/remedy
- agent/severity
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/event
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-historical
- collector/nvd-index
- vendor/microsoft
- canonical/internet explorer
- version/internet explorer/5.0