• Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
Internet Explorer 4.0 and 5.0 allows a remote attacker to execute security scripts in a different security context using malicious URLs, a variant of the "cross frame" vulnerability.
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
Date Entry Created
19990607 Disclaimer: The entry creation date may reflect when the CVE-ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Modified (19991205-01)
Votes (Legacy)
ACCEPT(2) Baker, Landfield
MODIFY(2) Frech, Wall
NOOP(2) Christey, Ozancin
Comments (Legacy)
 Frech> XF:ie-mshtml-crossframe
 Wall> (source: MSKB:Q168485)
 Christey> CVE-1999-0469 appears to be a duplicate; prefer this one over
   that one, since this one has an MS advisory.  Confirm with
   Microsoft that these are really duplicates.
   Also review CVE-1999-0487, which appears to be a similar

Proposed (Legacy)
This is an entry on the CVE list, which standardizes names for security problems.