CVE-1999-1206 — Vulnetix

Try Vulnetix Request Demo

CVE-1999-1206 PUBLISHED CVSS 7.5 HIGH

SystemSoft SystemWizard package in HP Pavilion PC with Windows 98, and possibly other platforms and operating systems, installs two ActiveX controls that are marked as safe for scripting, which allows remote attackers to execute arbitrary commands via a malicious web page that references (1) the Launch control, or (2) the RegObj control.

EPSS 1.64% · 81.8th percentile

Risk Scores

CVSS v2.0

7.5

EPSS Score

1.64%

81.8th percentile

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a
systemsoft	systemwizard

Timeline

Dec 31, 1999 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Aug 31, 2022 EPSS Score
Oct 22, 2022 EPSS Score
Dec 13, 2022 EPSS Score
Feb 3, 2023 EPSS Score
Mar 27, 2023 EPSS Score
May 18, 2023 EPSS Score
Jul 9, 2023 EPSS Score

References

19990729 New ActiveX security problems in Windows 98 PCs mailing-list
http://www.systemsoft.com/l-2/l-3/support-systemwizard.htm url
555 vdb
https://nvd.nist.gov/vuln/detail/CVE-1999-1206 advisory

Open in Interactive Console →