CVE-1999-1474
First published: Fri Dec 31 1999(Updated: )
PowerPoint 95 and 97 allows remote attackers to cause an application to be run automatically without prompting the user, possibly through the slide show, when the document is opened in browsers such as Internet Explorer.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft PowerPoint 2010 | =95 | |
| Microsoft PowerPoint 2010 | =97 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-1999-1474?
CVE-1999-1474 is classified as a high severity vulnerability due to its potential to allow arbitrary code execution without user consent.
What versions of PowerPoint are affected by CVE-1999-1474?
CVE-1999-1474 affects Microsoft PowerPoint versions 95 and 97.
How do I fix CVE-1999-1474?
To fix CVE-1999-1474, users should upgrade to a more secure version of Microsoft PowerPoint that is not vulnerable to this exploit.
Can CVE-1999-1474 be exploited in web browsers?
Yes, CVE-1999-1474 can be exploited in web browsers such as Internet Explorer when opening vulnerable PowerPoint documents.
What kind of attack does CVE-1999-1474 facilitate?
CVE-1999-1474 facilitates remote code execution attacks by allowing malicious PowerPoint presentations to run without user interaction.
- agent/references
- agent/type
- agent/first-publish-date
- agent/weakness
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/softwarecombine
- agent/event
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-historical
- collector/nvd-index
- vendor/microsoft
- canonical/microsoft powerpoint 2010
- version/microsoft powerpoint 2010/95
- version/microsoft powerpoint 2010/97